Group 1001 is a consumer-centric, technology-driven family of insurance companies on a mission to deliver outstanding value and operational performance by combining financial strength and stability with deep insurance expertise and a can-do culture. Group1001's culture emphasizes the importance of collaboration, communication, core business focus, risk management, and striving for outcomes. This goal extends to how we hire and onboard our most valuable assets - our employees.
Group 1001, and its affiliated companies, is strongly committed to providing a supportive work environment where employee differences are valued. Diversity is an essential ingredient in making Group 1001 a welcoming place to work and is fundamental in building a high-performance team. Diversity embodies all the differences that make us unique individuals. All employees share the responsibility for maintaining a workplace culture of dignity, respect, understanding and appreciation of individual and group differences.
We are seeking a highly skilled and experienced DevSec Engineer to join our team. You will be responsible for expanding and maintaining our platform of DevSecOps, Cybersecurity and Identity Platforms. You will collaborate with and support our Security organization directly and indirectly, advising cross-functional teams and clients on adoption of and adherence to security requirements while ensuring successful delivery.
Responsibilities:
Design, deploy and maintain scalable and secure Security and DevSecOps tooling platforms
Engineer with Terraform, Ansible and other IaC to high standards with documentation and automated testing
Collaborate with application developers to understand their underlying business needs and translate them into technical requirements
Develop and maintain documentation and architectural designs for DevSecOps platforms
Utilize DevOps principles and practices to automate deployment, monitoring, and management
Implement security controls and best practices to ensure data protection and compliance
Troubleshoot and resolve issues related to cloud infrastructure and applications
Stay up-to-date with the latest trends and advancements in security and secure developer experience technologies and provide recommendations for improvement
Requirements:
Minimum of 7 years of experience as a Software, DevOps and/or Platform Engineer
Strong experience writing Software and/or IaC, aligning to best practices
Strong experience defining defensive/secure development standards
Strong experience with shifting-left of vulnerabilities, primarily through CI/CD processes
Experience with containerization and/or Kubernetes (any flavor)
An understanding of the use of Terraform to manage Cloud resources
Experience with a modern configuration management tool, preferably Ansible
Possession of an "automate everything" mentality
Expertise with DevOps tools and practices, including CI/CD pipelines, configuration management, secrets management and version control systems (e.g., Git)
Strong communication and collaboration skills to effectively work with stakeholders and peers
Over and Above:
Experience with GCP, AWS and Azure
Experience integrating and managing secrets using HashiCorp Dedicated Vault
Experience with most or all of Gitlab's features - CI/CD, registries, security, governance, etc.
Experience with deploying and maintaining Sailpoint infrastructure a plus
Experience with Wiz, Orca and/or Wazuh or other Cyber + CDR/EDR/XDR platforms
Experience building durable, distributed orchestration systems
Proficiency in programming languages such as Python, Java, Golang
Solid understanding of network micro-segmentation and workload isolation strategies
Compensation:
Our compensation reflects the cost of labor across several U.S. geographic markets. The base pay for this position ranges from $150,000/year in our lowest geographic market up to $200,000/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.
Benefits Highlights:
Employees who meet benefit eligibility guidelines and work 30 hours or more weekly, have the ability to enroll in Group 1001's benefits package. Employees (and their families) are eligible to participate in the Company's comprehensive health, dental, and vision insurance plan options. Employees are also eligible for Basic and Supplemental Life Insurance, Short and Long-Term Disability, and to enroll in the Company's Employee Assistance Program and other wellness initiatives. Employees may also participate in the Company's 401K plan, with matching contributions by the Company.