GEICO
Staff Cyber Security Engineer - GRC Automation (REMOTE)
GEICO, Dallas, Texas, United States, 75215
Overview
Staff Cyber Security Engineer - GRC Automation (REMOTE)
at GEICO This role leads the development of an Automated Continuous Compliance platform for GEICO Cybersecurity Governance. It enables real-time evidence collection, identifies non-compliance with policies, and provides remediation guidelines in an automated, scalable way to reduce audit fatigue and improve the developer experience. You will collaborate with engineering, compliance, and security teams across GEICO to craft and roll out programmatic controls and to automate evidence collection and dashboards on the security posture. Responsibilities
Lead the Cyber Governance automation for automated evidence collection and reporting on automated adherence to information security policies. Design the Automated Governance Solution, including creating requirements and partnering with key stakeholders to implement the solution. Maintain, mature, and enhance the Automated Governance Solution to achieve high user satisfaction. Provide technical leadership for Cyber Governance program strategy, automation, and integration with cyber and IT technologies/services. Execute on the Automated Governance Platform with understanding of information security policies, standards, technologies, GEICO’s multi-cloud and on-prem environment, and compliance obligations. Collaborate with engineering teams to define overall system architecture for scalability and performance optimization. Collaborate across teams to solve complex problems, reduce audit fatigue, and improve operational rigor. Ensure regulatory compliance with evidence in a scalable manner and identify complementary products to scale automation goals. Partner with cloud technical teams (Azure, GCP, AWS) to deliver successful outcomes. Educate partner teams and promote an engineering-first approach to sustainable policy adherence. Design and code for automated, continuous compliance; solve security and business problems through automation and integration of cloud-native tools via API. Work with teams to drive feature innovation based on customer needs. Proficiency in programming languages such as Python, C#, SQL, NoSQL; experience with containers (Docker, Kubernetes) and Azure tools and services. Follow GEICO developer standards and guidelines; triage issues and support root cause analysis. Mentor colleagues and share best practices; influence executives and stakeholders; foster cross-team collaboration. Resource planning, process evaluation, and promoting continuous learning. Qualifications
Programming experience with at least one modern language such as Java, C++, or C# including object-oriented design. Experience contributing to architecture and design (reliability, scaling) of systems. Understanding of cloud platforms (Azure, AWS, GCP) and related services; knowledge of Azure PaaS/IaaS and networking. Understanding of security protocols and products (Active Directory, Windows Authentication, SAML, OAuth). 5+ years of security compliance framework experience (SOX, PCI-DSS, ISO27001, SOC, NIST or similar). Technical acumen in cloud and open-source distributed systems; strong collaboration and independent problem-solving skills. Strong written communication and technical research abilities; ability to work with multiple teams at all levels. Ability to develop relationships across policy and technical domains and drive issues to resolution. Ability to work independently with minimal supervision. Education
Bachelor €™s Degree or equivalent experience preferred. Experience & Certifications
6+ years of professional software engineering experience 3+ years of experience with architecture and design 2+ years of experience with AWS, GCP, Azure, or another cloud service 2+ years of experience in open-source frameworks Professional security certifications (e.g., CISSP, CCSP, CSSLP) is a plus Salary
$100,000.00/yr - $230,000.00/yr The above annual salary range is a general guideline. GEICO does not sponsor new applicants for employment authorization for this position at this time. The GEICO Pledge
Great Company:
GEICO aims to protect people when they need it most and to stay ahead of evolving needs. Our brand emphasizes innovation, customer focus, and collaborative success. Great Careers:
We offer development opportunities, training, certification support, mentorship, and leadership coaching. Great Culture:
We foster an inclusive culture of integrity, action, and belonging with a focus on performance and mutual respect. Great Rewards:
Compensation and benefits support physical, mental, and financial well-being, including a comprehensive Total Rewards program and a 401K with company match. Equal Employment Opportunity
The GEICO Companies provide equal employment opportunities to all associates and applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, disability, or genetic information, in compliance with applicable laws. GEICO reasonably accommodates qualified individuals with disabilities. (Note: This refined description removes other job postings and extraneous content while maintaining the core responsibilities, qualifications, and company information. It adheres to the allowed HTML tags.)
#J-18808-Ljbffr
Staff Cyber Security Engineer - GRC Automation (REMOTE)
at GEICO This role leads the development of an Automated Continuous Compliance platform for GEICO Cybersecurity Governance. It enables real-time evidence collection, identifies non-compliance with policies, and provides remediation guidelines in an automated, scalable way to reduce audit fatigue and improve the developer experience. You will collaborate with engineering, compliance, and security teams across GEICO to craft and roll out programmatic controls and to automate evidence collection and dashboards on the security posture. Responsibilities
Lead the Cyber Governance automation for automated evidence collection and reporting on automated adherence to information security policies. Design the Automated Governance Solution, including creating requirements and partnering with key stakeholders to implement the solution. Maintain, mature, and enhance the Automated Governance Solution to achieve high user satisfaction. Provide technical leadership for Cyber Governance program strategy, automation, and integration with cyber and IT technologies/services. Execute on the Automated Governance Platform with understanding of information security policies, standards, technologies, GEICO’s multi-cloud and on-prem environment, and compliance obligations. Collaborate with engineering teams to define overall system architecture for scalability and performance optimization. Collaborate across teams to solve complex problems, reduce audit fatigue, and improve operational rigor. Ensure regulatory compliance with evidence in a scalable manner and identify complementary products to scale automation goals. Partner with cloud technical teams (Azure, GCP, AWS) to deliver successful outcomes. Educate partner teams and promote an engineering-first approach to sustainable policy adherence. Design and code for automated, continuous compliance; solve security and business problems through automation and integration of cloud-native tools via API. Work with teams to drive feature innovation based on customer needs. Proficiency in programming languages such as Python, C#, SQL, NoSQL; experience with containers (Docker, Kubernetes) and Azure tools and services. Follow GEICO developer standards and guidelines; triage issues and support root cause analysis. Mentor colleagues and share best practices; influence executives and stakeholders; foster cross-team collaboration. Resource planning, process evaluation, and promoting continuous learning. Qualifications
Programming experience with at least one modern language such as Java, C++, or C# including object-oriented design. Experience contributing to architecture and design (reliability, scaling) of systems. Understanding of cloud platforms (Azure, AWS, GCP) and related services; knowledge of Azure PaaS/IaaS and networking. Understanding of security protocols and products (Active Directory, Windows Authentication, SAML, OAuth). 5+ years of security compliance framework experience (SOX, PCI-DSS, ISO27001, SOC, NIST or similar). Technical acumen in cloud and open-source distributed systems; strong collaboration and independent problem-solving skills. Strong written communication and technical research abilities; ability to work with multiple teams at all levels. Ability to develop relationships across policy and technical domains and drive issues to resolution. Ability to work independently with minimal supervision. Education
Bachelor €™s Degree or equivalent experience preferred. Experience & Certifications
6+ years of professional software engineering experience 3+ years of experience with architecture and design 2+ years of experience with AWS, GCP, Azure, or another cloud service 2+ years of experience in open-source frameworks Professional security certifications (e.g., CISSP, CCSP, CSSLP) is a plus Salary
$100,000.00/yr - $230,000.00/yr The above annual salary range is a general guideline. GEICO does not sponsor new applicants for employment authorization for this position at this time. The GEICO Pledge
Great Company:
GEICO aims to protect people when they need it most and to stay ahead of evolving needs. Our brand emphasizes innovation, customer focus, and collaborative success. Great Careers:
We offer development opportunities, training, certification support, mentorship, and leadership coaching. Great Culture:
We foster an inclusive culture of integrity, action, and belonging with a focus on performance and mutual respect. Great Rewards:
Compensation and benefits support physical, mental, and financial well-being, including a comprehensive Total Rewards program and a 401K with company match. Equal Employment Opportunity
The GEICO Companies provide equal employment opportunities to all associates and applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, disability, or genetic information, in compliance with applicable laws. GEICO reasonably accommodates qualified individuals with disabilities. (Note: This refined description removes other job postings and extraneous content while maintaining the core responsibilities, qualifications, and company information. It adheres to the allowed HTML tags.)
#J-18808-Ljbffr