Senior Staff Infrastructure Security Engineer at Rippling

Senior Staff Infrastructure Security Engineer

Rippling eliminates the friction from running a business, combining HR, IT, and Finance apps on a unified data platform.

Rippling gives businesses one place to run HR, IT, and Finance. It brings together all of the workforce systems that are normally scattered across a company, like payroll, expenses, benefits, and computers. For the first time ever, you can manage and automate every part of the employee lifecycle in a single system.

Based in San Francisco, CA, Rippling has raised $1.2B from the world’s top investors—including Kleiner Perkins, Founders Fund, Sequoia, Greenoaks, and Bedrock—and was named one of America's best startup employers by Forbes.

We prioritize candidate safety. Please be aware that official communication will only be sent from @Rippling.com addresses.

About The Role

Rippling is growing exceptionally fast and we have a 700+ person engineering team that ships code dozens of times every day. As a senior staff infrastructure security engineer you’ll be working closely with the infrastructure, corporate security, detection and response and product security teams to build guardrails and paved roads, adopting secure defaults, automating everything and helping define the direction of our infrastructure security team.

What You'll Do:

• Implement security controls for Github, Github Actions, Buildkite, Terraform, Kubernetes and AWS.
• Support platform and infrastructure teams on moving securely to a Service Oriented Architecture (SOA).
• Drive data security initiatives across the organization.
• Define and provide actionable security metrics for the organization.
• Jump into the most challenging areas to identify and solve problems quickly.
• Help drive and own a detailed infrastructure security roadmap and vision.
• Participate in security design reviews and threat model exercises.
• Provide mentorship to other engineers.

Qualifications:

• 10+ years of experience in security or software engineering in a cloud environment.
• Prior experience with Kubernetes security concepts such as secure deployments, network policies, service-to-service (S2S) authentication & authorization, RBAC, workload identity translation, admissions controllers, runtime security, and more.
• Proficiency in either Python or Go.
• Proficiency with deployment automation/configuration management (eg. Terraform, CloudFormation, Github Actions, Buildkite, Pulumi).
• Expertise with AWS security controls and services.
• Ability to thrive in an ambiguous environment by identifying areas of impact and independently pursuing them.
• A track record of influencing and enabling forward-thinking technology decisions across a wide organization.

Additional Information

Rippling is an equal opportunity employer. We are committed to building a diverse and inclusive workforce and do not discriminate based on race, religion, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, age, sexual orientation, veteran or military status, or any other legally protected characteristics. Rippling is committed to providing reasonable accommodations for candidates with disabilities who need assistance during the hiring process.

Rippling highly values in-office collaboration. Employees living within 30 miles of an office are expected to work onsite three days a week with those living 30-49.9 miles away expected to be in the office one day a week. Employees living over 50 miles away are required to relocate within 30 miles of an office. To enhance team cohesiveness, new employees are asked to work onsite three days a week for their first six months.

This role will receive a competitive salary + benefits + equity. The salary for US-based employees will be aligned with one of the ranges below based on location.