So, what’s the role?

As the Security Engineer at Kin, you will be a core member of the security architecture  review board and of the office of information security. You will be responsible for designing and building infrastructure across multiple security domains.  You will be making technical decisions specifically taking into account trade-offs between short versus long term security and business objectives. You will  handle several difficult problems, make risk-based assessments backed up with data and demonstrate resilience while managing difficult situations. 

A day in the life could include: 

• Designing and executing on architecture plans, and bringing engineering solutions to reality with a DevSecOps mindset & culture
• Thriving in an immutable infrastructure and git-ops driven environment.
• Collaborating with various stakeholders in multiple technical disciplines: including developers, business intelligence, data engineers, devops, quality assurance, and architects to support existing and implement new security solutions
• Designing, building, operating, and maintaining a data protection/data loss prevention practice
• Performing industry research on new security protocols, and methodologies
• Serving as a technical advisor to management concerning the planning, development, design, procurement, maintenance and implementation of security for enterprise-level systems
• Creating and implementing information systems cloud security best practices and mentoring company personnel 
• Mentoring engineering team in secure software development methodologies and best practices.
• Helping to build and configure plans, code pipelines and automated solutions that can be re-used and/or scale.
• Monitoring and evaluating audit and compliance industry trends and third-party tools
• Analyzing industry specific regulatory requirements, and contributing to policies and procedures
• Functioning as a core member of the security architectural review board, and office of information security

I’ve got the skills… but do I have the necessary ones?

• 4+ years working in system, network, and/or application security
• 3+ years of working knowledge doing security and/or infrastructure solution architecture
• 5+ years of expertise engineering and building weapons grade secure cloud architecture with AWS solutions
• Experience and strong understanding of terraform, immutable-infrastructure, git-ops, automation, CI/CD pipelines, and orchestration
• Background deploying web and service-based applications in dockerized environments
• Working knowledge of a configuration management tool (Ansible, Chef, Puppet, etc)
• Experience with monitoring tools like Cloudwatch, Splunk, DataDog etc.
• Proficient with multiple programming languages like Java, C++, Ruby, Python, Perl, etc.)
• Understanding of containerization (Docker) and various runtime environments like Fargate, EKS etc.
• Working knowledge of IP networking, VPN's, DNS, load balancing, security groups, VPC’s,  WAFs and other cloud  detection/protection systems, NAT and packet filtering
• Proficient with various compliance and security control frameworks like NIST, ISO 27001/27002, COBIT, ITIL, CSRC
• Previous work experience at an organization that develops web-based application software
• Demonstrated project management skills & strong attention to detail 
• Strong communication skills, with the ability to convey technical concepts to individuals with varying levels of technical understanding
• Highly self-motivated with the ability to work independently
• Ability to organize time and project work efficiently
• Bachelor’s degree + certifications, technical training, or other audit and compliance relevant work experience

Oh, and don’t worry, we’ve got you covered! 

• Medical, Dental and Vision Insurance (including 100% employer-paid plans)
• Flexible PTO policy 
• Very generous equity options and 401K
• Parental Leave
• Continuing education and professional development 
• Disability and Life Insurance 
• The excitement of joining a high-growth Insurtech company and seeing your work make an impact