Identity and Access Management Architect
Chevy Chase, MD

Job Description

The Cybersecurity Organization has an exciting opportunity for an Identity and Access Management Architect. This individual will play a key role in the design, development, and implementation of complex systems that will streamline and secure how GEICO approaches and treats Identity within the organization. Specifically, the selected individual will serve as a Product Owner for how GEICO utilizes key Identity services in the realm of Azure Active Directory, Privilege Access Management services, and Federation services. You will be at the forefront of modernizing how applications consume our Identity services and act as a key point of contact for application teams and others that consume those services. This position will involve working with cross-functional teams to understand both business processes and technical requirements. As such, the ideal applicant will be well versed in current Identity trends (and future state) within the industry and be able to influence design on how GEICO treats Identities and how applications consume Identities. The applicant will have a desire to work in a dynamic environment, have an excellent work ethic, have great communication skills, and be a self-starter. You must be a team player with a positive attitude who is motivated to work towards common goals.

Responsibilities:

* Serve as Product Owner for designated Scrum
* Design and Support Identity Access Management solutions supporting a robust application landscape, numerous applications identities, and GEICO's most privileged accounts.
* Standardize how GEICO utilizes Identity, specifically in the realm of Federation, Single Sign On, and Privileged Access Management.
* Work with Identity Engineering and Governance teams to develop strategy and deployment plans for making Identity resources consumable for the organization
* Provide technical solutions to internal clients on how to utilize Identity resources
* Provide status updates to upper management
* Communicate and evangelize security concepts so that our developers and users understand the importance of access controls
* Ensure documentation is current, and if none exists, create documentation using standardized models and templates

Required Skills:

* Strong understanding of legacy and modern authentication protocols
* Familiarity with modern forms of SSO and Multifactor Authentication
* Ability to script in PowerShell, Python, etc.
* Familiarity with Linux platforms
* Familiarity with Application Design and how applications interact with Identity resources
* Strong familiarity with Azure Active Directory and application design in the Azure environment
* Strong familiarity with Active Directory
* An advanced understanding of network concepts, the OSI model, and how to interpret the flow of information between information systems at the network level (e.g., packet captures, Netstat)
* Ability to work within the Scrum Framework, with demonstrable skills in managing a backlog, creating User Stories, and use of Microsoft DevOps
* Demonstrable skills with Microsoft Visio
* Ability to research and keep-up-to-speed on security concepts and development
* Excellent communication, analytical and organizational skills
* Must be able to communicate in a clear, concise, professional oral or written manner, to be understood by customers
* Ability to operate independently to provide domain area functional and technology expertise
* Strong problem-solving skills
* Must be able to provide off hour support if needed, which may require late evenings and/or weekend work

Desired Skills:

* A Bachelor's Degree in a computer science related field or complimentary experience
* An understanding of the system provisioning life cycle, how to manage appliances and VMs via various hypervisors, and how the Azure Cloud handles resources. The ability to demonstrate an understanding of how your system enhances and adheres to existing cybersecurity controls.
* Security Certifications, to include Security+, Certified Ethical Hacker (or similar attach techniques certification), SSCP, and CISSP

#LI-AM1

About GEICO

For more than 75 years, GEICO has stood out from the rest of the insurance industry! We are one of the nation's largest and fastest-growing auto insurers thanks to our low rates, outstanding service and clever marketing. We're an industry leader employing thousands of dedicated and hard-working associates. As a wholly owned subsidiary of Berkshire Hathaway, we offer associates training and career advancement in a financially stable and rewarding workplace.

Our associates' quality of life is important to us. Full-time GEICO associates are offered a comprehensive Total Rewards Program*, including:

* 401(k) and profit-sharing plans
* Medical, dental, vision and life insurance
* Paid vacation, holidays and leave programs
* Tuition reimbursement
* Associate assistance program
* Flexible spending accounts
* Business casual dress
* Fitness and dining facilities (at most locations)
* Associate clubs and sports teams
* Volunteer opportunities
* GEICO Federal Credit Union
* Benefit offerings for positions other than full-time may vary.

GEICO is an equal opportunity employer. GEICO conducts drug screens and background checks on applicants who accept employment offers.

How to Apply

Click "Apply for Job" to complete your application. You will need an active email address and phone number. Please upload your resume, preferably as Word .doc files or PDF. Once you begin your application you can save it and access it later. Your application should include any work and/or internship experience from at least the past five years.

GDOORIT

#LI-AT1