Staff Infrastructure Security Engineer - Rippling
San Francisco, CA 94104
About the Job
About Rippling
Rippling gives businesses one place to run HR, IT, and Finance. It brings together all of the workforce systems that are normally scattered across a company, like payroll, expenses, benefits, and computers. For the first time ever, you can manage and automate every part of the employee lifecycle in a single system.
Take onboarding, for example. With Rippling, you can hire a new employee anywhere in the world and set up their payroll, corporate card, computer, benefits, and even third-party apps like Slack and Microsoft 365—all within 90 seconds.
Based in San Francisco, CA, Rippling has raised $1.2B from the world's top investors—including Kleiner Perkins, Founders Fund, Sequoia, Greenoaks, and Bedrock—and was named one of America"s best startup employers by Forbes.
We prioritize candidate safety. Please be aware that official communication will only be sent from @Rippling.com addresses.
About The Role
Rippling is growing exceptionally fast and we have a nearly 800 person engineering team that ships code dozens of times every day. As a staff infrastructure security engineer you'll be working closely with the infrastructure, corporate security, detection and response and product security teams to build guardrails and paved roads, adopting secure defaults, automating everything and helping define the direction of our infrastructure security team.
What You"ll Do:
- Implement security controls for Github, Github Actions, Buildkite, Terraform, Kubernetes and AWS.
- Support platform and infrastructure teams on moving securely to a Service Oriented Architecture (SOA).
- Drive data security initiatives across the organization.
- Define and provide actionable security metrics for the organization.
- Jump into the most challenging areas to identify and solve problems quickly.
- Help drive and own a detailed infrastructure security roadmap and vision.
- Participate in security design reviews and threat model exercises.
- Provide mentorship to other engineers.
Qualifications:
- 8+ years of experience in security or software engineering in a cloud environment.
- Prior experience with Kubernetes security concepts such as secure deployments, network policies, service-to- service (S2S) authentication & authorization, RBAC, workload identity translation, admissions controllers, runtime security, and more.
- Proficiency in either Python or Go.
- Proficiency with deployment automation/configuration management (eg. Terraform, CloudFormation, Github Actions, Buildkite, Pulumi).
- Expertise with AWS security controls and services.
- Ability to thrive in an ambiguous environment by identifying areas of impact and independently pursuing them
- A track record of influencing and enabling forward-thinking technology decisions across a wide organization
Additional Information
Rippling is an equal opportunity employer. We are committed to building a diverse and inclusive workforce and do not discriminate based on race, religion, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, age, sexual orientation, veteran or military status, or any other legally protected characteristics, Rippling is committed to providing reasonable accommodations for candidates with disabilities who need assistance during the hiring process. To request a reasonable accommodation, please email accomodations@rippling.com
Rippling highly values in-office collaboration. Employees living within 30 miles of an office are expected to work onsite three days a week with those living 30-49.9 miles away expected to be in the office one day a week. Employees living over 50 miles away are required to relocate within 30 miles of an office. To enhance team cohesiveness, new employees are asked to work onsite three days a week for their first six months.
This role will receive a competitive salary + benefits + equity. The salary for US-based employees will be aligned with one of the ranges below based on location; see which tier applies to your location here.
A variety of factors are considered when determining someone's compensation–including a candidate's professional background, experience, and location. Final offer amounts may vary from the amounts listed below.
The pay range for this role is:
162,000 - 283,500 USD per year(US Tier 1)
145,800 - 255,150 USD per year(US Tier 2)
137,700 - 240,975 USD per year(US Tier 3)
PI255173917