The engineering team at Root strives to be one of the most transformative engineering teams ever. We’re changing the way an industry works by leveraging technology and data to build the best products possible. Even with our significant growth, we operate in small teams that are given ownership over projects and results. We’ve found that the people closest to the problems are the best at solving them.
We recently raised the largest VC round ever for an Ohio technology company:
https://news.crunchbase.com/news/ohio-unicorn-root-insurance-rolls-on-with-350m-in-new-cash/1021/
Our team excels at delivering software to solve the problems in front of us at Root: presently, a suite of world-class mobile, web, and server-based products obsessed with the customer experience. We’ve shaped our team and process around this; we know that constant iteration and experimentation produce the best results.
For more information on engineering at Root see https://eng.joinroot.com/
About the position
We deploy our applications using Amazon Elastic Container Service running Docker containers. For our data analytics platforms, we use a combination of AWS Redshift, Hadoop, and GPU servers. We’re looking for a devsecops engineer to help secure these platforms. You’ll be joining a small team dedicated to securing Root, having a large opportunity to influence how we build and secure these systems. In addition to taking on security specific initiatives you would work closely with and often pair with other engineers working on Root’s infrastructure.
We're looking for somebody experienced with:
- securing cloud based Linux servers and networks in a production environment
- creating monitoring and alert pipelines for security events
- infrastructure-as-code and managing infrastructure via APIs
- understanding of network configuration, common protocols, and subnetting
- Docker and containers
- a configuration management tool such as Terraform, Ansible, Puppet, or Chef
- Git
It’d also be helpful to have experience with the following technologies, although it’s not required:
- AWS tools and solutions for securing your infrastructure (like GuardDuty, SecurityHub, IAM)
- Securing continuous delivery pipelines
- Securing containers and AWS ECS