Encryption Jobs (NOW HIRING)

At GEICO, we offer a rewarding career where your ambitions are met with endless possibilities.

Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers' expectations while making a real impact for our company through our shared purpose.

When you join our company, we want you to feel valued,supported,and proud to work here.That'swhy we offer The GEICO Pledge: Great Company, Great Culture, GreatRewards,and Great Careers.

GEICO'sPlatform Security Engineering organization has an exciting opportunity for an accomplishedStaff Engineer - Platform Security Engineering - Encryption and Tokenization. This individual will be crucial in the design, implementation, and maintenance of a robust Encryption and Tokenization platform, ensuring the protection of sensitive data throughout the organization.

Position Description:

As a Staff Engineer, you will work closely with engineers and partner teams to design, build, and evolve secure data protection platforms, enhancing existing systems and applying yourexpertisein encryption and tokenization to solve complex technical problems. You will lead the design and delivery of key components within the platform security domain, contributing directly to productionready implementations while helping shape technical direction, execution plans, and engineering practices that enable reliable product delivery and support new platform capabilities.

Position Responsibilities

As a Staff Engineer, you will:

• Lead the design, development, and evolution of encryption, tokenization, and key management solutions within a defined platform or product domain.

• Drive handson implementation of secure data protection capabilities, contributing directly to productionready systems while setting technical direction for the team.

• Ensure the quality, reliability, and operational excellence of encryption and tokenization services, including high availability, disaster recovery, observability, and auditable logging.

• Partner closely with compliance, security, data governance, and application teams to ensure cryptographic solutions align with company policies and regulatory requirements.

• Contribute to architectural decisions by proposing scalable, resilient designs for key management systems and data protection workflows.

• Apply knowledge of modern cryptography trends and standards to improve platform security and inform technical decisions.

• Provide technical mentorship and guidance to engineers on the team, helping raise the bar on secure coding, design quality, and operational practices.

• Collaborate with product and engineering stakeholders to integrate encryption and tokenization solutions that support business and platform goals.

• Identifyopportunities to improve performance, cost efficiency, and developer experience within the encryption and key management ecosystem

Qualifications

• Strong understanding of cryptographic encryption, tokenization, and Key Management Systems (KMS).

• Experience designing and implementing secure, scalable solutions for data at rest encryption, usingopen-sourcecryptographic libraries and protocols (e.g., FPE, AEAD).

• Strong software engineering skills, with experience building production grade services (Go preferred).

• Working knowledge of key management technologies and libraries, such as Google Tink, PKCS#11, JCE, and OpenSSL.

• Experience operating stateful systems such as PostgreSQL, including replication and reliability considerations.

• Provenproblem-solvingskills with a security first mindset and proactive approach to risk mitigation.

• Experience applying site reliability engineering (SRE) practices, including monitoring, alerting, and incident response (Grafana, Prometheus,Open Telemetry,eBPF).

• Experience building andmaintainingCI/CD pipelines and infrastructure as code (e.g., Bazel, Terraform, Argo CD/Workflows/Rollouts).

• Strong communicationskills, with the ability to explain technical concepts clearly to engineers and partner teams.

• Familiarity with hardware security modules (HSMs) and cryptography standards.

Experience:

• 6+ yearsof experience in security or software engineering with a focus onencryption, tokenization, key management, or cryptography.

• 3+ yearsof experience contributing to system design, architecture, andsecurity focusedsolutions.focusedsolutions.

• Experience working withopensource security or cryptographyframeworks.sourcesecurity or cryptography frameworks

• Experience building and operating systems incloud environments(AWS, GCP, Azure preferred).