Cyber GRC Automation Security Engineer (REMOTE)

Join to apply for the Cyber GRC Automation Security Engineer (REMOTE) role at GEICO.

GEICO is seeking a Security Engineer to enhance our cybersecurity governance program. You will lead automation initiatives in cyber governance by designing and implementing continuous monitoring and reporting of information security controls across all GEICO applications and services.

• Lead automation efforts by understanding security policies, standards, technologies, and GEICO’s multi-cloud and on-premise environment.
• Create a roadmap and plan for automating security controls for continuous monitoring.
• Define control language, evidence requirements, and asset scope for automation.
• Develop a unified security controls framework aligned with standards like NIST CSF 2.0, PCI, NY DFS, SOX, etc.
• Collaborate with control owners, governance, compliance, and other stakeholders to automate security controls.
• Identify and implement products and solutions to scale automation efforts.
• Work with cloud teams (Azure, GCP, AWS) to ensure successful delivery.
• Design and code modules for infrastructure, applications, and processes as needed.
• Apply automation to solve security and business issues using programming and API integrations.
• Communicate findings and recommendations effectively to stakeholders.
• Educate teams on solutions and explore new opportunities.
• Utilize programming languages such as Python, C#, SQL, NoSQL, and tools like Docker and Kubernetes.
• Share best practices and improve processes within teams.
• Follow GEICO’s developer standards and guidelines.

• Experience with modern programming languages (Java, C++, C#) and object-oriented design.
• Experience in system architecture, design patterns, reliability, and scaling.
• Knowledge of data structures, algorithms, and operational portals like Azure Portal.
• Understanding of HTML5, JavaScript/TypeScript, XML, JSON, microservices, REST APIs, and Azure network/security services.
• Experience with cloud platforms (Azure, GCP, AWS) and security protocols (Active Directory, SAML, OAuth).
• 5+ years of security compliance experience with standards like SOX, PCI-DSS, ISO27K, SOC, or NIST.
• Strong collaboration, communication, and problem-solving skills.
• Bachelor’s Degree or equivalent experience preferred.

Salary range: $75,000 – $185,000 annually, based on experience and other factors. GEICO offers sponsorship for employment authorization, comprehensive benefits, 401K with 6% match, and flexible remote options.

GEICO is committed to protecting its customers and fostering a culture of innovation, inclusion, and growth. We value integrity, diversity, and excellence, and offer numerous programs for employee development and recognition.

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industry: Insurance