Staff Software Engineer, Security & AI Platform

About the Role

The Product & AI Security Engineering team operates at the intersection of product, platform, and AI, prioritizing high-leverage projects that reduce risk and unlock faster delivery for other teams. As a Staff Software Engineer, you will play a crucial role in defining and owning security architecture and standards across Gusto's products and AI/LLM experiences.

What You Will Do

• Design, build, and operate authentication and authorization systems that work at Gusto scale, ensuring the security and integrity of customer data.
• Strengthen core services and data protections, including access control, storage, and APIs, to safeguard against potential threats.
• Detect and mitigate account takeover and other abuse, improving safety for Gusto's customers and maintaining their trust.
• Build security platforms and tooling that help product and AI teams move quickly and safely, enabling innovation while ensuring security.
• Own and improve high-availability security and identity services that other teams depend on, ensuring seamless and secure operations.
• Tackle ambiguous AI/LLM security problems from threat modeling to practical mitigations, staying ahead of emerging security challenges.
• Provide leadership in promoting security and software engineering excellence, contributing to Gusto's culture of innovation and continuous learning.
• Collaborate with cross-functional teams to ensure security is integrated into every aspect of Gusto's products and services.
• Participate in code reviews and contribute to the improvement of Gusto's engineering practices, fostering a culture of excellence.

What We Are Looking For

• 10+ years of experience as a backend engineer, building and operating large-scale server-side services and APIs.
• Proven track record building secure, highly available distributed systems and services, with a strong understanding of security principles and practices.
• Hands-on experience with modern security tooling and practices (e.g., SAST, DAST, SIEM, SCA), and the ability to apply this knowledge to real-world problems.
• Proficiency in one or more programming languages (Ruby, Python, Kotlin, JavaScript/TypeScript), with the ability to learn and adapt to new technologies.
• Experience with AI tools for coding (e.g., Cloud Code, Cursor, Github Copilot), and an understanding of their security implications.
• Strong collaboration skills and comfort breaking down complex, cross-cutting security and AI problems into clear, practical solutions.
• Ability to provide technical leadership and mentorship to junior engineers, contributing to the growth and development of the team.

Nice to Have

• Experience with cloud security platforms (AWS, Azure, Google Cloud), and the ability to apply this knowledge to secure Gusto's cloud-based services.
• Familiarity with security frameworks and compliance standards (e.g., SOC 2, HIPAA), and the ability to ensure Gusto's services meet these standards.
• Knowledge of machine learning security and the ability to apply this knowledge to secure Gusto's AI/LLM experiences.

Benefits and Perks

• Competitive base pay and equity (RSUs), reflecting Gusto's commitment to sharing its success with its employees.
• Comprehensive benefits package, including health insurance, 401(k), and paid time off, to support the well-being of Gusto's employees.
• Opportunity to work on high-impact projects that directly influence the security and integrity of Gusto's services, making a real difference in the lives of their customers.
• Collaborative and dynamic work environment, with a team of experienced engineers and security experts who are passionate about their work.
• Professional development opportunities, including training, conferences, and workshops, to support the growth and development of Gusto's employees.
• Flexible remote work arrangements, allowing employees to work from anywhere and maintain a healthy work-life balance.

• To stand out as a candidate, be prepared to provide specific examples of your experience building secure, highly available distributed systems and services.
• Familiarize yourself with Gusto's products and services, and be prepared to discuss how your skills and experience align with their security needs.
• Showcase your proficiency in one or more programming languages, and highlight your experience with modern security tooling and practices.
• Be prepared to discuss your experience with AI tools for coding, and how you have applied this knowledge to secure AI/LLM experiences.
• Highlight your ability to provide technical leadership and mentorship to junior engineers, and discuss your approach to breaking down complex security problems into clear, practical solutions.
• Consider creating a portfolio or providing examples of your work that demonstrate your skills and experience in security and AI, to support your application and help you stand out as a candidate.