Staff Security Engineer
The world has changed. Why hasn’t insurance?
Kin’s mission is to reimagine home insurance For Every New Normal. While other insurers struggle to handle a fast-changing world, Kin is built for the future and is prepared to meet its challenges head on while helping our customers do the same.
Kin is proud to be one of BuiltIn Chicago’s 2021 and 2022 Best Mid Sized Companies to work for, and Forbes 2021 Best Startup Employers in North America. Simply put, our people are what make us great, and we need forward-thinking, inspired game-changers like you to join us in our mission.
So, what’s the role?
As the Staff Security Engineer at Kin, you will be a core member of the security architecture review board and of the office of information security. You will be responsible for designing and building infrastructure across multiple security domains. You will be making technical decisions specifically taking into account trade-offs between short versus long term security and business objectives. You will handle several difficult problems, make risk-based assessments backed up with data and demonstrate resilience while managing difficult situations.
A day in the life could include:
- Designing and executing on architecture plans, and bringing engineering solutions to reality with a DevSecOps mindset & culture
- Thriving in an immutable infrastructure and git-ops driven environment.
- Collaborating with various stakeholders in multiple technical disciplines: including developers, business intelligence, data engineers, devops, quality assurance, and architects to support existing and implement new security solutions
- Designing, building, operating, and maintaining a data protection/data loss prevention practice
- Performing industry research on new security protocols, and methodologies
- Serving as a technical advisor to management concerning the planning, development, design, procurement, maintenance and implementation of security for enterprise-level systems
- Creating and implementing information systems cloud security best practices and mentoring company personnel
- Mentoring engineering team in secure software development methodologies and best practices.
- Helping to build and configure plans, code pipelines and automated solutions that can be re-used and/or scale.
- Monitoring and evaluating audit and compliance industry trends and third-party tools
- Analyzing industry specific regulatory requirements, and contributing to policies and procedures
- Functioning as a core member of the security architectural review board, and office of information security
I’ve got the skills… but do I have the necessary ones?
- 4+ years working in system, network, and/or application security
- 3+ years of working knowledge doing security and/or infrastructure solution architecture
- 5+ years of expertise engineering and building weapons grade secure cloud architecture with AWS solutions
- Experience and strong understanding of terraform, immutable-infrastructure, git-ops, automation, CI/CD pipelines, and orchestration
- Background deploying web and service-based applications in dockerized environments
- Working knowledge of a configuration management tool (Ansible, Chef, Puppet, etc)
- Experience with monitoring tools like Cloudwatch, Splunk, DataDog etc.
- Proficient with multiple programming languages like Java, C++, Ruby, Python, Perl, etc.)
- Understanding of containerization (Docker) and various runtime environments like Fargate, EKS etc.
- Working knowledge of IP networking, VPN's, DNS, load balancing, security groups, VPC’s, WAFs and other cloud detection/protection systems, NAT and packet filtering
- Proficient with various compliance and security control frameworks like NIST, ISO 27001/27002, COBIT, ITIL, CSRC
- Previous work experience at an organization that develops web-based application software
- Demonstrated project management skills & strong attention to detail
- Strong communication skills, with the ability to convey technical concepts to individuals with varying levels of technical understanding
- Highly self-motivated with the ability to work independently
- Ability to organize time and project work efficiently
- Bachelor’s degree + certifications, technical training, or other audit and compliance relevant work experience
Oh, and don’t worry, we’ve got you covered!
- Medical, Dental, Vision, Disability and Life Insurance
- Flexible PTO policy
- Remote work
- Generous equity package
- 401K with company match
- Parental leave
- Continuing education and professional development
- The excitement of joining a high-growth Insurtech company and seeing your work make an impact
About Kin
In an industry that hasn't budged in more than 100 years, our technology transforms the user experience, cuts inefficiencies that waste billions of consumer dollars, and customizes coverage homeowners want. We believe insurance was always meant to be a digital product – we’re making that a reality.
Our approach to the industry makes us unique, and the people at Kin help us excel. We’re a team of problem solvers, collaborators, builders, and dreamers who are passionate about creating positive change in the lives of our customers and in our industry. Kin is more than just our name – it’s how we treat each other. That’s one of the many reasons we’ve been recognized as a great place to work by Built In, Forbes, and Fast Company.
EEOC Statement
Kin is proud to be an Equal Employment Opportunity and Affirmative Action Employer. We don't just accept difference – we honor it, nurture it, and celebrate it. We don’t discriminate based on race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
Kin encourages applications from all backgrounds, communities and industries, and are committed to having a team that is made up of diverse skills, experiences and abilities.
#LI-Remote