Network Security Staff Engineer (HYBRID)

About The Position

Requirements

• Extensive experience in security access services, products and protocols such as MFA and Kerberos, as well as Proxy and VPN clients.
• Extensive experience in designing and optimizing complex firewall ACL configurations.
• Experience communicating and presentation to senior and junior staff with the ability to influence stakeholders.
• Experience in a multi-platform environment with Linux, Mac, Windows.
• Experience in ZTNA technologies from companies such as Zscaler, Palo Alto, Cisco, Cloudfare, etc.
• Experience in implementing, administering and troubleshooting web access firewall and network proxy solutions.
• Experience in implementing a remote access solution leveraging least privilege principles, providing access based upon a person's role in the organization.
• Experience with solving security control requirements with engineering approaches.
• Ability to excel in a fast-paced, startup-like environment.
• Ability to design, perform experiments, and influence security detection and protection solutions.
• Strong knowledge of industry-standard security tools, frameworks, and best practices including MITRE, CIS and NIST.
• Fluency and specialization with at least one modern language such as Python or Go.
• Experience in cryptographic protocols, digital certificates, and encryption standards such as X.509, Transport Layer Security (TLS), and Advanced Encryption Standard (AES).
• Experience working with auditors and demonstrating security controls.
• 4+ years of professional experience in network engineering
• 3+ years of experience with network security, architecture, and design
• 3+ years of experience with AWS, GCP, Azure, or another cloud service
• Bachelor's degree in computer science, Information Systems, or equivalent education or work experience

Nice To Haves

• 2+ years of experience with open-source frameworks is desired

Responsibilities

• Collaborate with product managers, team members, customers, and other engineering teams to solve our toughest problems
• Review, develop and execute technical Network Security strategies across all network access-related services and systems, balancing security with performance and efficiency
• Own accountability for the quality, usability, and performance of the solutions
• Consistently share best practices and improve processes within and across teams
• Take on-call and operational support responsibilities as needed and assigned.

Benefits

• 401K savings plan vested from day one that offers a 6% match
• performance and recognition-based incentives
• tuition assistance
• mental healthcare
• fertility and adoption assistance
• workplace flexibility
• GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year