About Gusto

Gusto is a modern, online people platform that helps small businesses take care of their teams. On top of full-service payroll, Gusto offers health insurance, 401(k)s, expert HR, and team management tools. Today, Gusto offices in Denver, San Francisco, and New York serve more than 100,000 businesses nationwide.

Our mission is to create a world where work empowers a better life, and it starts right here at Gusto. That’s why we’re committed to building a collaborative and inclusive workplace, both physically and virtually. Learn more about our Total Rewards philosophy

Gusto processes billions of dollars in payroll every month for small businesses and their employees. Our clients trust us with a huge amount of personally identifiable information (PII) and protected health information (PHI), including SSNs, EINs, salaries, home addresses, and more. Our business is largely built on trust, as a result protecting our clients’ PII and PHI is one of the top considerations in anything we do at Gusto.

Here’s what you’ll do day-to-day:

  • Build, Deploy, and Perfect! Implement and fine-tune our security tools towards capability determined goals of advancing our detection and response capabilities.  
  • Detect and fix the Bad Stuff!  Take the lead on threat hunting, deriving and deploying detections,  IOC analysis, and incident response, always thinking about attack vectors in which PII and PHI can be compromised.
  • Positive Company Influence! Work across the organization to affect positive security change as an active collaborator, contributor, and communicator.
  • Automate everything!  Build and deploy automation to cover our core capabilities to provide efficiency and reproducibility in results for the entire team.
  • Engage & Educate!  Assist employees with security questions, and engage with employees as a member of our helpdesk rotation
  • Experiment, Expand, and Extract!  Turn ideas into reality securing Gusto for its customers and employees.  We support open source, and can release our good ideas to show how we protect our customers and to assist teams in other companies.

Here’s what we’re looking for:

  • 8+ years in security analysis and engineering roles, focused on creating detections and data analysis.
  • Experience with incident response, either in-house or through an outsourced service provider.  Have been involved in multiple large scale incident response processes as an incident manager or other significant contributor.
  • Ability to partner closely with cross-functional internal (and possibly external) stakeholders to manage incidents and create positive change for the organization.
  • Demonstrated knowledge of AWS and other cloud technologies as well as on-premise systems and data centers, including networks and systems (Linux and Windows).
  • 2+ years of experience with infrastructure as code and standard build process, terraform and buildkite preferred.
  • Strong proficiency in one or more programming/scripting languages, ability to mentor others on best practices in at least one language.  Ruby, Javascript, python, and golang are good options.

Apply for this Job

* Required

  
  


Voluntary Self-Identification

Our customers come from all walks of life and so do we. We hire people from a wide variety of backgrounds, not just because it’s the right thing to do, but because it helps us to build better products, better serve our customers, and makes our company stronger. 

In addition to the information required to consider your application, below is a set of voluntary demographic questions. If you choose to fill them out, the responses will be used to help us identify areas for improvement in our process and further support the development and execution of our diversity efforts and programs. 

 

Your responses to these questions will be recorded and maintained in a confidential file. Your responses, or your choice to not respond,  will not be associated with your specific application and will not in any way be used in making any employment decisions, including hiring decisions.


Please use this as a reference while completing the disability self-identification:

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition. Disabilities include, but are not limited to: 

  • Blindness
  • Deafness
  • Cancer
  • Diabetes
  • Epilepsy
  • Autism
  • Cerebral palsy
  • HIV/AIDS
  • Schizophrenia
  • Muscular dystrophy
  • Bipolar disorder
  • Major depression
  • Multiple sclerosis (MS)
  • Missing limbs or partially missing limbs
  • Post-traumatic stress disorder (PTSD)
  • Obsessive compulsive disorder
  • Impairments requiring the use of a wheelchair
  • Intellectual disability

 

How would you describe your gender identity (please select one)?





I identify as transgender (please select one):




I identify my sexual orientation as (please select one):






I identify my race/ethnicity as (mark all that apply):











Veteran Status (please select one):



I have a disability (please select one):