Staff Engineer - Platform Security Engineering – Encryption and Tokenization

GEICO

Actively hiring
Remote (Md Bethesda Office, US) Posted 69 days ago $110,000$230,000 / year
View original post Log in to save

At a glance

AI generated

TL;DR

GEICO’s Platform Security Engineering team is seeking a Staff Engineer to lead the design and implementation of robust encryption and tokenization platforms, ensuring data protection across the organization. This role involves hands-on development and maintenance of secure systems, setting technical direction for key components within the platform security domain. The ideal candidate will have expertise in cryptographic standards, open-source libraries like Google Tink and OpenSSL, and experience with cloud environments such as AWS or GCP. They should be proficient in Go and familiar with CI/CD pipelines using tools like Bazel and Terraform. Additionally, the position requires strong collaboration skills to work closely with compliance, security, and application teams to align cryptographic solutions with company policies and regulatory requirements, while also providing mentorship to junior engineers.

Skills

Go Terraform Bazel Argo CD Prometheus Grafana Open Telemetry eBPF Google Tink PKCS#11 JCE OpenSSL PostgreSQL AWS GCP Azure FPE AEAD CI/CD

What you'll do

  • Lead the design and development of encryption, tokenization, and key management solutions.
  • Ensure high availability, disaster recovery, and auditable logging for encryption services.
  • Partner with compliance teams to align cryptographic solutions with regulatory requirements.
  • Contribute to architectural decisions by proposing resilient designs for data protection workflows.
  • Provide technical mentorship to engineers on secure coding and operational practices.
  • Collaborate with stakeholders to integrate encryption solutions supporting business goals.
  • Identify opportunities to improve performance, cost efficiency in the encryption ecosystem.

What we're looking for

  • 6+ years of experience in encryption, tokenization, key management, or cryptography.
  • Strong understanding of cryptographic libraries and protocols (e.g., FPE, AEAD).
  • Experience designing secure, scalable solutions for data at rest encryption.
  • Proven problem-solving skills with a security-first mindset.
  • Familiarity with cloud environments (AWS, GCP, Azure) and open-source frameworks.
  • Strong software engineering skills, preferably in Go, building production-grade services.
  • Experience applying SRE practices including monitoring, alerting, and incident response.

Market check

Salary context

This $110,000–$230,000 range sits above 57% of similar postings on FindRole.

Peer median band

$119,950$220,000

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$143,912$195,000

Middle half of comparable postings.

Based on 240 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About GEICO

GEICO (Government Employees Insurance Company) is one of the largest auto insurers in the United States, offering affordable auto, home, renters, and other personal insurance products. Industry: Insurance

GEICO currently has 128 open roles on FindRole.

Listed pay typically runs $110,000–$230,000 across 128 roles with salary data.

Most-posted roles

View all roles at GEICO

More like this

Similar roles

Manager, Staff Engineering - Cryptography

GEICO

Remote (Md Bethesda Office, US) 30 days ago $130,000$260,000
HashiCorp_Vault Azure_Key_Vault HSM_management AWS GCP Azure Python Java Go API_development Event_Driven_Architecture CI/CD Cloud_computing SaaS PaaS IaaS Network_technologies Compute_technologies Storage_technologies Database_technologies Virtualization Security_technologies Secrets_Management Certificates_management PKI Data_Protection
Remote

Manager, Staff Engineering - Cryptography

GEICO

Remote (Md Bethesda Office, US) 30 days ago $130,000$260,000
HashiCorp_Vault Azure_Key_Vault HSM_management AWS GCP Azure Python Java Go API_development Event_Driven_Architecture CI/CD Cloud_computing SaaS PaaS IaaS Network_technologies Compute_technologies Storage_technologies Database_technologies Virtualization Security_technologies
Remote

System Software Engineer - Secure Cryptographic Services

Nvidia

Remote (Us, Ca, Santa Clara, US) 115 days ago $224,000$356,500
Python Java .NET Go AWS Azure GCP Oracle Cloud PKI HSM Sigstore Post-Quantum Cryptography IAM RBAK SAML SSO Microsoft Threat Modeling Tool CI/CD Docker Terraform
Remote

Application Security Engineer

Booz Allen Hamilton

US 22 days ago $86,900$198,000
F5_BIG-IP TLS MUTUAL_TLS PROXY OFFICE_365 TEAMS AWS AZURE CI/CD

Application Security Engineer

Booz Allen Hamilton

US 9 days ago $86,900$198,000
F5_BIG-IP VMware NSX-T SD-WAN DoD_IL_Clouds Office_365 Teams CI/CD