About Gusto

Gusto is a modern, online people platform that helps small businesses take care of their teams. On top of full-service payroll, Gusto offers health insurance, 401(k)s, expert HR, and team management tools. Today, Gusto offices in Denver, San Francisco, and New York serve more than 300,000 businesses nationwide.

Our mission is to create a world where work empowers a better life, and it starts right here at Gusto. That’s why we’re committed to building a collaborative and inclusive workplace, both physically and virtually. Learn more about our Total Rewards philosophy

Senior Staff Software Engineer 

About the Role:

We are looking for a talented Engineering Lead with experience in building and managing secure authentication and authorization systems. In this role, you will be responsible for designing, developing, and maintaining scalable identity management systems, ensuring the security of user data, and enabling seamless user experiences. You will collaborate closely with product, security, and engineering teams to integrate robust authentication mechanisms into our platform

Here’s what you’ll do day to day:

  • Collaboratively design and implement authorization solutions, including role-based access controls and workflows for managing user permissions, roles, and scopes across Gusto’s product suite.
  • Engage in hands-on coding, contributing directly to the codebase and driving quality through active participation.
  • Provide clear and constructive feedback during code reviews to foster team growth and maintain high standards of code quality.
  • Collaborate with cross-functional teams, including Product Management, Design, and Business, to identify customer pain points and develop innovative solutions.
  • Stay up-to-date with industry trends and best practices related to authorization and security.
  • Lead and mentor fellow engineers in tackling complex technical challenges at scale.
  • Prototype, iterate, and launch new features quickly and efficiently.
  • Foster a collaborative environment that encourages creativity and innovation, building products our customers love.

Here’s what we’re looking for:

  • Experience: 12+ years of software development experience, with a strong focus on authentication and authorization systems.
  • Technical Expertise: Solid understanding of secure coding principles, Ruby, cryptography in authentication and authorization systems, and IAM best practices.
  • API Security: Experience with API security and integrating authentication systems into applications.
  • Tools Proficiency: Familiarity with technologies like Okta, Azure AD, OAuth, OpenID Connect (OIDC), SAML, header-based authentication, LDAP, and SCIM.
  • Leadership Skills: Proven experience leading the innovation of customer-facing products and managing large projects end-to-end.
  • Data Modeling: Advanced data modeling skills with hands-on experience building well-structured, easily maintainable, and well-documented code.
  • Problem-Solving: Expertise in addressing complex product development challenges, particularly with Rails and React.
  • Passion for Customers: A genuine passion for creating memorable experiences for customers and a commitment to understanding their needs.
  • Effective Communicator: Strong verbal and written communication skills to articulate ideas clearly and collaborate with diverse teams.

 

Our cash compensation amount for this role is targeted at $191,000-$214,000 in Denver & most remote locations, and  $225,000-$252,000 San Francisco & New York. Stock equity is additional. Final offer amounts are determined by multiple factors including candidate experience and expertise and may vary from the amounts listed above.

 


Gusto has physical office spaces in Denver, San Francisco, and New York City. Employees who are based in those locations will be expected to work from the office on designated days approximately 2-3 days per week (or more depending on role). The same office expectations apply to all Symmetry roles, Gusto's subsidiary, whose physical office is in Scottsdale.

Note: The San Francisco office expectations encompass both the San Francisco and San Jose metro areas. 

When approved to work from a location other than a Gusto office, a secure, reliable, and consistent internet connection is required.


Our customers come from all walks of life and so do we. We hire great people from a wide variety of backgrounds, not just because it's the right thing to do, but because it makes our company stronger. If you share our values and our enthusiasm for small businesses, you will find a home at Gusto. 

Gusto is proud to be an equal opportunity employer. We do not discriminate in hiring or any employment decision based on race, color, religion, national origin, age, sex (including pregnancy, childbirth, or related medical conditions), marital status, ancestry, physical or mental disability, genetic information, veteran status, gender identity or expression, sexual orientation, or other applicable legally protected characteristic. Gusto considers qualified applicants with criminal histories, consistent with applicable federal, state and local law. Gusto is also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you require assistance in filling out a Gusto job application, please reach out to candidate-accommodations@gusto.com.

Gusto takes security and protection of your personal information very seriously. Please review our Fraudulent Activity Disclaimer.

Apply for this Job

* Required

resume chosen  
(File types: pdf, doc, docx, txt, rtf)
cover_letter chosen  
(File types: pdf, doc, docx, txt, rtf)


Voluntary Self-Identification

Our customers come from all walks of life and so do we. We hire people from a wide variety of backgrounds, not just because it’s the right thing to do, but because it helps us to build better products, better serve our customers, and makes our company stronger. 

In addition to the information required to consider your application, below is a set of demographic questions that help us identify areas for improvement in our process and further support the development and execution of our diversity efforts and programs as well as to create a more inclusive environment for all employees. 

Your responses to these questions will be recorded and maintained in a confidential file. Your responses, or your wish not to answer, will not be associated with your specific application, will not be shared with hiring managers,  and will not in any way be used in making any employment decisions, including hiring decisions.


Please use this as a reference while completing the disability self-identification:

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition. Disabilities include, but are not limited to: 

  • Blindness
  • Deafness
  • Cancer
  • Diabetes
  • Epilepsy
  • Autism
  • Cerebral palsy
  • HIV/AIDS
  • Schizophrenia
  • Muscular dystrophy
  • Bipolar disorder
  • Major depression
  • Multiple sclerosis (MS)
  • Missing limbs or partially missing limbs
  • Post-traumatic stress disorder (PTSD)
  • Obsessive compulsive disorder
  • Impairments requiring the use of a wheelchair
  • Intellectual disability

 

How would you describe your gender identity (please select one)? (Select one) *





I identify as transgender (please select one): (Select one) *




I identify my sexual orientation as (please select one): (Select one) *






I identify my race/ethnicity as (mark all that apply): *












Veteran Status (please select one): (Select one) *



I have a disability (please select one): (Select one) *




I identify as a first-generation professional (please select one): (Select one) *




Enter the verification code sent to to confirm you are not a robot, then submit your application.

This application was flagged as potential bot traffic. To resubmit your application, turn off any VPNs, clear the browser's cache and cookies, or try another browser. If you still can't submit it, contact our support team through the help center.