We’re hiring an Information Security Engineer in Columbus, OH

The engineering team at Root strives to be one of the most transformative engineering teams ever. We’re changing the way that car insurance works. We’re competing with companies that have been around for a century and comprise a $200B industry—and we’re doing it with an astonishingly small team.

Our tech stack includes:
Ruby / Rails backend, RSpec for testing
Javascript / React Native frontend, Mocha for testing
Small amounts of native iOS and Android
Deployment to AWS ECS using containers
Buildkite for CI

Root Insurance is a VC-backed, innovative Ohio technology company, founded in 2015 and growing ever since:

Our team excels at delivering software to build Root’s products: Apple and Android mobile apps, a web-based application, and a backend platform for personal auto insurance. We’ve shaped our team and our way of working around this. Our engineering team would not be the most transformative team at building a mobile operating system. We’d be quite bad at that. We’re exceptionally good at building the type of software that is necessary to invoke change in the insurance industry.

For more information on engineering at Root see https://eng.joinroot.com/

We divide the areas of responsibility for engineers into three major areas:

Technical: The skills and knowledge that make up an engineer’s basic problem-solving toolbox.
Planning and Execution: The ability to plan and execute assigned work beyond basic technical solutions.
Working with Others: The ability to work effectively with other engineers and people in other functions.

Technical Skills

  • Deep understanding of technological & administrative controls used to reduce risk and secure an enterprise
  • Expert understanding in several areas of Information Security, such as Network Security, Endpoint Security, DLP, Vulnerability Management, etc. SDLC and/or Cloud Security are highly desired
  • Incorporates monitoring and audit-capabilities into solution designs
  • Solid knowledge of compliance standards and laws (PCI, HIPAA, etc.)
  • Experience with Incident Response, Third Party Security, and Security Awareness training desired
  • Experience documenting solutions: runbooks, standards, and procedures

Planning and Execution

  • Plans and completes large and complex tasks/projects with little or no supervision
  • Identifies risk and security issues, as well as potential controls and requirements for large projects and features
  • Stays current on changing threat landscape to inform future security controls and practices
  • Analyze, Evaluate, Recommend, Document, Deploy, Maintain, Train, and Support administrative & technical control solutions
  • Thinks critically about work to help reduce business risk, taking into account business goals in design of security controls
  • Can break down large initiatives into incrementally implementable deliverables

Working with Others

  • Ability to work within the organization as a subject matter expert
  • Able to work across teams to tackle complex issues
  • Able to positively influence other engineers, both directly and indirectly
  • Works with product owners, analysts and other functions to move company’s priorities forward
  • Work with teams to improve or implement security on existing work-flows, with as little disruption as possible
  • Ability to accept criticism, provide feedback to others, grow security knowledge and assist professional development in others within the organization

Scope of Impact: Team/Initiative/Company

  • The Information Security Team is set to impact Root Insurance in a very positive way in 2019, and beyond
  • Compliance driven initiatives will define projects in Information Security, allowing significant gains to be made quickly, with full organizational support
  • Design and engineering of solutions ‘green field’ in many areas

Get in touch

Finding the right people to help us build Root is a top priority. Whether you would like to explore the possibility of working together or simply learn more about the position, we’d love to hear from you!

Apply now

Current job openings

Data Science

If you’d like to be a part of what we are building but don’t see an opening that suits you, email us at [email protected].