StackRox
StackRox is a Sequoia-backed startup that helps secure container and Kubernetes environments at scale. The StackRox Kubernetes Security Platform enables security and DevOps teams to enforce their compliance and security policies across the entire container life cycle, from build to deploy to runtime.
Why join us?
Funded by Sequoia Capital and Redpoint Ventures.
Added dozens of customers in 2019.
Founders and leadership team have previously started and led successful companies like Cyphort (acquired by Juniper), Skyhigh Networks (acquired by McAfee), and CoreOS (acquired by RedHat).
Engineering at StackRox
Our structure and processes are geared towards allowing our small-but-mighty team to deliver a great product that delights our customers.
Broadly speaking, a subset of our team focuses exclusively on the frontend component, while the rest focus primarily — but not exclusively -- on the backend components. Each backend component has a set of owners, who are responsible for its long-term maintenance.
However, this structure is quite fluid, and everyone in our team is comfortable working with different components depending on what needs to be done. This flexibility has the added benefit of allowing us to move quickly -- we frequently evolve our architecture, adding, modifying and removing new components as we enhance our product.
We strive to be iterative in how we deliver features, shipping in increments and collecting customer feedback frequently. We plan our work in sprints that last three weeks. At the end of each sprint, we ship a new release to our customers.
Each project that we work on is executed by a team of engineers, who own it end-to-end, from design to implementation to testing. When new projects start out, the engineers working on it share a design document with the broader team, iterate on it rapidly based on peer feedback, and proceed to implement it. During the implementation phase of a project, the engineers working on it collaborate closely, review each other’s pull requests, and communicate status proactively and often with the broader team.
We process a lot of data, in real-time, from our customers’ Kubernetes clusters — from the filesystems in their images to the processes that run in their containers. Coupled with the fact that our product runs in some of the largest and fastest-growing Kubernetes environments that exist, this means that we have our work cut out for us when it comes to handling scale.
We deal with data sources that span many components of the stack, which requires us to leverage deep systems knowledge. This involves, for example, stitching together system calls, file names and IP addresses with Kubernetes deployments and network policies.
Our product is responsible for securing key components of the infrastructure. This means that our systems need to be highly robust while still being very low-touch for regular maintenance or upgrades.
Our product is focused on Kubernetes security. Since Kubernetes and the surrounding ecosystem are evolving rapidly, there are always new technologies and developments that our product needs to keep up with — from containerd and eBPF to Istio and Helm.
Automatically generate “process whitelists”, of what processes typically run in each of a customer’s deployments, and alert them if any processes outside the whitelist are executed.
Generate Kubernetes network policies based on network traffic observed in a customer’s clusters at runtime.
Inspect customers’ Docker images, extracting the files present in them and inspecting their contents to find known vulnerabilities as well as misconfigurations.
Boost scale of our product, so that it is able to process larger volumes of data, in real-time and at low latency, from our customers’ clusters.
Set up infrastructure and re-architect our product to allow us to provide it as a hosted service.
Working at StackRox
We work in a very collaborative environment and have transparency into all department activities via slack channels and open calendars. We trust each other to get their work done and ask for help, if needed. Our team has a great attitude in tackling challenges. We genuinely want each other to succeed and grow professionally. Our Engineering team works by the motto, Be Excellent To Each Other!
(In reference to the comedy, Bill and Ted's Excellent Adventure)
-
Generous Vacation
We have an unlimited vacation policy.
-
Free Food
We have lunch catered Monday through Thursday. On Friday, we order individual lunches, covered by StackRox. All of our offered lunches have vegetarian and non-dairy options available.
-
Health Insurance
We offer Medical, Dental, Vision, and 401K.
-
Maternal/Paternal Leave
Two of our Executives have babies and understand how meaningful that bonding time is for parents. We offer both maternal and paternal leave.
-
Work from Home
We have employees that drive into work every day from Santa Cruz and San Francisco, who we encourage to work from home once a week. Though, this isn't a policy, we trust each other to get their work done, attend important meetings, and would be supportive if you needed a day to work from home.
-
Flexible Hours
-
Team Activities
-
Beautiful Office
We have a beautiful office with big windows and lots of natural light in downtown Mountain View. We're located right next to the Mountain View CalTrain station.
External Links
- https://finance.yahoo.com/news/stackrox-achieves-aws-container-competency-120000230.html
- https://www.infosecurity-magazine.com/interviews/interview-kamal-shah-stackrox/
- https://devops.com/the-new-era-of-kubernetes-with-stackrox/
- http://www.digitaljournal.com/tech-and-science/technology/stackrox-2020-predictions-kubernetes-to-devops/article/564066
- https://www.aithority.com/security/stackrox-kubernetes-security-platform-wins-two-siia-codie-awards-for-best-emerging-technology-and-best-network-security-solution/
- https://www.aithority.com/interviews/ait-megamind/aithority-interview-with-ali-golshan-cto-and-co-founder-at-stackrox/
Interested in this company?
Skip straight to final-round interviews by applying through Triplebyte.