1d ago

Senior Staff Security Engineer

San Francisco, CA

$210k-$270k / year

full-timeleadfinance

๐Ÿ›  Tech Stack

๐Ÿ’ผ About This Role

You'll lead edge and network security strategy at Gusto, owning Cloudflare WAF, DDoS protection, and Zero Trust rollout. Your work protects payroll, benefits, and HR systems for hundreds of thousands of small businesses. You'll serve as a force multiplier across the security org, making high-impact architectural decisions that compound over time.

๐ŸŽฏ What You'll Do

  • Design and operate edge security stack including Cloudflare WAF, DDoS, Bot Management, WARP, Gateway, and Access.
  • Own network security perimeter across AWS and edge: VPC design, Network Firewall, Shield, CloudFront, NACLs, egress filtering.
  • Develop policy-as-code patterns for WAF rules, network policies, and edge configuration via Terraform and Crossplane.
  • Build detections and alerting on edge and network telemetry in Panther, and lead incident response for perimeter events.

๐Ÿ“‹ Requirements

  • 10+ years of hands-on security engineering experience with edge, network, or perimeter security at scale.
  • Deep, production-grade expertise with Cloudflare security stack including WAF, DDoS, Bot Management, WARP, Gateway, and Access.
  • Strong network architecture skills across edge and cloud: TLS/mTLS, segmentation, egress controls, DDoS resilience, AWS networking.
  • Fluency with policy-as-code, Terraform, and CI/CD-first delivery of security controls.

โœจ Nice to Have

  • Crossplane or similar infrastructure-as-code experience.
  • Relevant certifications including AWS Certified Advanced Networking Specialty, AWS Certified Security Specialty, Cloudflare Certified Security Associate/Professional, CKS.

๐ŸŽ Benefits & Perks

  • ๐Ÿ’ฐ Competitive base pay with stock equity (RSUs).
  • ๐Ÿ–๏ธ Flexible PTO and remote-friendly culture.
  • ๐Ÿฅ Health insurance including medical, dental, vision.
  • ๐Ÿ“ˆ 401(k) plan with company match.
  • ๐Ÿข Office spaces in Denver, San Francisco, New York City with hybrid schedule.

๐Ÿ“จ Hiring Process

Estimated timeline: 2-4 weeks ยท AI estimate

  1. 1Recruiter Callยท 30 min
  2. 2Technical Screenยท 60 min
  3. 3Onsite Rounds (2-3 interviews)ยท 3-4 hours
0 0 0