Match score not available

Distinguished Engineer, Platform Security Engineering- PKI and Certificate Management (REMOTE)

Remote: 
Full Remote
Contract: 
Salary: 
130 - 300K yearly
Experience: 
Mid-level (2-5 years)
Work from: 
Maryland (USA), United States

Offer summary

Qualifications:

Expertise in PKI and Certificate Management, Strong problem-solving abilities and excellent communication skills, Understanding of cryptographic protocols and encryption standards, Experience with Kubernetes, CI/CD tools, cloud platforms and PostgreSQL, Bachelor’s degree in CS or related field.

Key responsabilities:

  • Lead PKI and certificate management strategies enterprise-wide
  • Ensure quality and performance of cryptographic solutions
  • Educate leadership on PKI importance and data practices
  • Manage certificate lifecycle efficiently and implement security measures
  • Stay updated on cryptography trends and provide technical mentorship
GEICO logo
GEICO Insurance XLarge https://www.geico.com/
10001 Employees
See more GEICO offers

Job description

As a Distinguished Engineer, you will collaborate with our Sr Staff, Staff, and Sr. Engineers to innovate and construct new systems, enhance existing ones, and discover fresh opportunities to apply your specialized knowledge in PKI and Certificate Management to resolve critical issues. You will spearhead the strategy and execution of a technical roadmap that accelerates product delivery and unlocks new engineering capabilities. Your leadership will be crucial in the design, implementation, and maintenance of a robust PKI framework, ensuring secure authentication and encrypted communication throughout the organization.

Position Responsibilities

· Lead the development and execution of PKI and certificate management strategies across the enterprise.

· Ensure the quality, usability, and performance of cryptographic solutions.

· Influence and educate leadership on the importance of PKI and secure data practices.

· Share best practices and improve processes for PKI management within and across teams.

· Manage the certificate lifecycle efficiently, including issuance, renewal, and revocation.

· Implement tokenization and encryption solutions to minimize sensitive data exposure.

· Stay updated on emerging trends in cryptography and apply this knowledge to enhance data protection strategies.

· Provide technical guidance and mentorship, fostering a culture of innovation and continuous improvement.

· Collaborate with cross-functional teams to integrate PKI solutions seamlessly with organizational goals.

· Build resilient and scalable PKI architectures, driving innovation and cost efficiency.

Qualifications

· Profound expertise in cryptographic protocols, digital certificates, and encryption standards such as X.509, TLS, and AES.

· Demonstrated experience in designing and implementing resilient, scalable, and efficient PKI solutions.

· Strong problem-solving abilities with a proactive approach to security risk mitigation.

· Excellent communication skills for conveying technical concepts to diverse stakeholders.

· Desirable certifications: CISA, CISSP, CISM.

· Extensive experience with Kubernetes (K8s) and cloud platforms, particularly Azure.

· Expertise in building and evolving CI/CD tools and pipelines using technologies such as Bazel, Terraform, and Argo CD/Workflows/Rollouts.

· Proficient in implementing and utilizing infrastructure observability and monitoring tools like Grafana, Prometheus, OpenTelemetry, and eBPF.

· In-depth experience with PostgreSQL, including its native replication mechanisms.

· Strong software engineering skills, with a preference for experience in Go.

Experience

· 10+ years in security engineering with a focus on PKI and Certificate Management.

· 8+ years in security, encryption, architecture, and design with PKI specialization.

· 6+ years with open-source frameworks related to security and PKI.

· 4+ years with cloud services and their security aspects, preferably with experience in AWS, GCP, Azure.

Education

· Bachelor’s degree in Computer Science, Information Systems, or equivalent with a focus on security and cryptography.

Additional Requirements

· Experience in managing PKI within large-scale, distributed environments.

· Knowledge of industry standards and regulations related to PKI and digital certificates.

· Ability to lead and execute PKI projects from conception to deployment.

· Familiarity with hardware security modules (HSMs) and key management practices.

· Experience with automation tools for certificate deployment and management.


 

Annual Salary

$130,000.00 - $300,000.00

The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate’s work experience, education and training, the work location as well as market and business considerations.


 

GEICO will consider sponsoring a new qualified applicant for employment authorization for this position.


 

Benefits:

As an Associate, you’ll enjoy our Total Rewards Program* to help secure your financial future and preserve your health and well-being, including:

  • Premier Medical, Dental and Vision Insurance with no waiting period**
  • Paid Vacation, Sick and Parental Leave
  • 401(k) Plan
  • Tuition Reimbursement
  • Paid Training and Licensures

*Benefits may be different by location.  Benefit eligibility requirements vary and may include length of service.

**Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.

The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled.

GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

Required profile

Experience

Level of experience: Mid-level (2-5 years)
Industry :
Insurance
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Other Skills

  • Communication
  • Problem Solving

Security Engineer Related jobs