CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the top personal lines property and casualty insurance groups in the U.S. Our employees proudly live our core beliefs and fulfill our enduring purpose to help members prevent, prepare for and recover from life's uncertainties, and we're proud of the culture we create together. As we commit to progress over perfection, we recognize that every day is an opportunity to be innovative and adaptable. At CSAA IG, we hire good people for a brighter tomorrow. We are actively hiring for a Dev Ops Engineer. Join us and support CSAA IG in achieving our goals.

Your Role:

The DevSecOps Team ensures application security testing is organically built into all of our solutions - ensuring a consistent secure software development practice. They will work to build in this security as they develop infrastructure as code, application configurations, SRE solutions, and CI/CD pipelines across all environments (Cloud, Kubernetes, On Premises) in a secure and safe manner. They are able to direct activities to improve manual and automated continuous integration, build & deployment quality in terms of delivering a quality, consistent, and standardized product into an environment using best practices and methodologies.

Your work:

• Build security organically into the development practices of DevOps/DevSecOps and advising the value streams of this practice.

• Serves as a consultant in the continuous delivery of application vulnerability scanning, remediation, and reporting across various platforms and architectures.
• Execute the practice of finding, fixing, and preventing security vulnerabilities at the application level in hardware, software, and development processes.
• Assigned work on complex, major or highly visible tasks in support of multiple projects that require multiple areas of expertise with no oversight.
• Expertise in multiple technical environments (DevOps, DevSecOps, Cloud) and knowledge of one or more value streams.
• Assesses client needs utilizing a structured requirements process (gathering, analyzing, documenting, and managing changes).
• Develop and build DevOps and DevSecOps solutions to meet business Application requirements. Installs, configures, reviews and approves solutions.
• Performs automation maintenance and updates due to changes in requirements or implementations with adherence to established processes and standards.
• Builds CI/CD Pipelines adhering to established processes, security and standards.
• Develop DevOps and DevSecOps tools (CI, CD, SCM, SAST, DAST, SCA, etc.) to assist in automation of application build, deployment, testing, security and monitoring.
• Assists in establishing requirements, methods and procedures for routine maintenance. Help govern the adherence of said requirements.
• Creates release notes, deployment plans, etc. Verifies the functionality of components and services and ensures the CI/CD pipeline meets client's expectations. Plans and performs ongoing routine application maintenance tasks.
• Works with vendors to resolve problems and develop solutions. Evaluates vendor solutions to ensure compliance with requirements and cost effectiveness.
• Participates in the development of contingency plans including reliable backup and restore procedures. Participates in the identification of continuity/disaster recovery risks and mitigation plans. Assists in the development of disaster recovery plans with service providers.

Required Experience, Education and Skills

• Expert level knowledge in information security engineering in CI/CD pipelines (DevSecOps) and Data Pipelines and Systems
• Expert level knowledge in one or more of the common languages used in DevOps: Python, TypeScript, JavaScript, Go, Bash/Shell Scripting, Power Shell, etc.
• Expert level knowledge in Linux/Windows systems administration experience
• Expert level knowledge building and securing infrastructure as code using AWS CDK, Terraform, Cloud Formation, Ansible, YAML and/or similar tools.
• Expert level knowledge of the public cloud infrastructure and services in AWS (IAM, VPC, KMS, EKS, Cloud Watch, Systems Manager, S3, RDS, Route53, Lambda, AWS Config, etc.) and Azure is a strong plus
• Expert level knowledge in monitoring and logging tools (AWS Cloud Watch/Splunk/New Relic/AWS X-Ray/etc.)
• Advanced knowledge in the SAFe, Agile, and ITIL Service Management disciplines and how they interact
• Advanced knowledge in the following Tools and Technologies; Maven, GIT, AWS CI/CD tools, JAVA, Jenkins, Oracle, Chef, Tomcat, Kubernetes, Docker, VMWare, Ansible, Terraform
• Familiarity with SDLC (Systems Development Life Cycle) standards and best practices to realize improved cycle times for changes to Test, QA and Production environments
• Expert level knowledge in deploying production workloads on AWS and managing Kubernetes clusters at scale
• BS in Computer Science or related field or equivalent experience

What would make us excited about you?

• Actively shapes our company culture (e.g., supporting employee resource groups, mentoring employees, volunteering, joining cross-functional projects)
• Champions our cultural norms (e.g., willing to have cameras when it matters: helping onboard new team members, building relationships, etc.)
• Demonstrates a company ownership mindset, thinking beyond boundaries of their own area
• Travels as needed for role, including divisional / team meetings and other in-person meetings
• Fulfills business needs, which may include investing extra time, helping other teams, etc

CSAA IG Careers

At CSAA IG, we’re proudly devoted to protecting our customers, our employees, our communities, and the world at large. We are on a climate journey to continue to do better for our people, our business, and our planet. Taking bold action and leading by example. We are citizens for a changing world, and we continually change to meet it.

Join us if you…

• BELIEVE in a mission focused on building a community of service, rooted in inclusion and belonging.

• COMMIT to being there for our customers and employees.
• CREATE a sense of purpose that serves the greater good through innovation.

Recognition: We offer a total compensation package, performance bonus, 401(k) with a company match, and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at https://careers.csaa-insurance.aaa.com/us/en/benefits

In most cases, you will have the opportunity to choose your preferred working location from the following options when you join CSAA IG: remote, hybrid, or in-person. Submit your application to be considered. We communicate via email, so check your inbox and/or your spam folder to ensure you don’t miss important updates from us. If a reasonable accommodation is needed to participate in the job application or interview process, please contact TalentAcquisition@csaa.com.

As part of our values, we are committed to supporting inclusion and diversity at CSAA IG. We actively celebrate colleagues’ different abilities, sexual orientation, ethnicity, and gender. Everyone is welcome and supported in their development at all stages in their journey with us.

We are always recruiting, retaining, and promoting a diverse mix of colleagues who are representative of the U.S. workforce. The diversity of our team fosters a broad range of ideas and enables us to design and deliver a wide array of products to meet customers’ evolving needs.

CSAA Insurance Group is an equal opportunity employer.

The national average salary range for this position is $157,770 - $175,300. However, we have a location-based compensation structure. Our salary ranges vary and are calculated based on county of residence. The full salary range for this position across all the states we hire in is $141,930 - $210,400. This role also includes an opportunity for a company-wide annual discretionary bonus, through our Annual Incentive Plan (AIP), of up to 12% of eligible pay.

If you apply and are selected to continue in the recruiting process, we will schedule a preliminary call with you to discuss the role and will disclose during that call the available salary/hourly rate range based on your location. Factors used to determine the actual salary offered may include location, experience, or education.

Please note we are hiring for this role remote anywhere in the United States with the following exceptions: Hawaii, Alaska and California. California exception does not apply to existing CA employees.

Must have authorization to work indefinitely in the US.