GEICO is more than insurance, it's truly a tech company at heart. GEICO's Technology Solutions is rapidly expanding to keep up with its growth in the digital space.The GEICO Cybersecurity Organization has an exciting opportunity for an accomplished Principal Identity Platform Engineer. The Cybersecurity Identity Engineering Team is at the forefront of initiatives to modernize Identity and Access programs and practices across GEICO. The team members lead engineering and design activities and act as product SME's for initiatives to modernize Identity programs and services. They serve a critical role within cross-functional teams to define and document requirements, architecture and designs and delivery functional identity solutions. GEICO Cybersecurity is presently leading numerous initiatives to enhance GEICO's identity architecture, expand cloud identity capabilities, strengthening our security posture and improving governance and compliance. The Principal Engineer will define, design and deliver critical identity solutions as the organization modernizes how GEICO utilizes Identity services within the realm of Azure Active Directory, Conditional Access Policies, Azure Multi-Factor Authentication, Federated Authentication, Enterprise Application identities and Cloud Identity and Access Lifecycle Management. The ideal Engineer will be well versed in designing and implementing Azure Active Directory and related security services and be able to guide various business, development, and technical teams on the optimal methods to deliver secure identity services for GEICO associates and applications. The ideal Engineer will have demonstrable experience leading cross-functional initiatives, designing and documenting enterprise class services for both on prem and cloud-based scenarios. Responsibilities:Lead engineering, architecture, design, and delivery of GEICO's enterprise Identity solutionsResearch and evaluate new security solutions, frameworks, and techniques to provide new enterprise capabilitiesDefine requirements, architecture and design of identity and identity-related enterprise servicesParticipate in development and reporting of proper metrics that measure project progress, as well as metrics that illustrate the efficacy of how the Modern Authentication Scrum is operating within IdentityProvide strategic guidance on identity security and maintain compliance with industry security standardsLead customer-facing and stakeholder engagement efforts for IdentityPerform expert-level documentation and maintain and develop solution requirements - understanding and experience of an Architecture and Engineering lifecycleMentor junior engineers Qualifications:Minimum of 7+ years of experience leading enterprise identity solutions design and deployment for cloud-based identity scenarios including Azure Active Directory, Azure AD Connect, Active Directory, SAML, Open ID Connect, LDAP/KerberosDirect experience designing, deploying, and supporting Identity protection solutions such as Multi-Factor Authentication, Enterprise Application Single Sign on, Role-based access controls, Privileged Identity Management Expert knowledge of Microsoft's AzureAD/SSO/Active Directory with a strong focus on access control via RBAC/ABACExcellent interpersonal, communication, and presentation skills, including formal writing experienceAutomation/coding in Python or equivalent scripting language is a plus Experience with Identity Lifecycle integrations and Saviynt's IGA platforms is a plus Benefits: At GEICO, we make sure you have the support and resources to leverage and develop your skills, secure your financial future, and take care of your health and well-being. GEICO continually seeks to provide a workplace where everyone can be their authentic self. To help achieve this goal, we support associate-led Employee Resource Groups that foster a true sense of community. Through GEICO's competitive benefits offerings and various training and development opportunities, we have you covered with our Total Rewards Program* that includes:Premier Medical, Dental and Vision Insurance with no waiting period**Paid Vacation, Sick and Parental Leave401(k) PlanTuition Assistance including Direct Billing and Reimbursement payment plan optionsPaid Training, Licensures, and Certificates *Benefits may be different by location. Benefit eligibility requirements vary and may include length of service. **Coverage begins with the pay period after hire date. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect. The safety of our associates, both current and future, is GEICO's highest priority. At this time, most of our associates are working remotely due to the current COVID-19 pandemic. Candidates who are selected for this position will be trained remotely and must be able to work from home in a designated work area. GEICO is proud to be an equal opportunity employer. We are committed to cultivating an environment where equal employment opportunities are available to all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO celebrates diversity and believes it is critical to our success. As such, we are committed to recruit, develop and retain the most talented individuals to join our team. #LI-RD2