Senior Privacy Engineer

About Gusto

Gusto is a modern, online people platform that helps small businesses take care of their teams. On top of full-service payroll, Gusto offers health insurance, 401(k)s, expert HR, and team management tools. Today, Gusto offices in Denver, San Francisco, and New York serve more than 300,000 businesses nationwide.

Our mission is to create a world where work empowers a better life, and it starts right here at Gusto. That’s why we’re committed to building a collaborative and inclusive workplace, both physically and virtually. Learn more about our Total Rewards philosophy.

About the Role:

As a Senior Privacy Engineer at Gusto, you will lead strategic privacy initiatives, ensuring that our systems and products comply with global privacy regulations while embedding privacy into our product and technological ecosystem. Your expertise will guide the development and implementation of cutting-edge privacy solutions, focusing on automation, data protection, and compliance.

About the Team:

Our Privacy Engineering team, as part of Gusto’s Security organization, focuses on designing and implementing privacy-preserving product and internal solutions.The Security team’s mission is to be the most trustworthy place for customer data, and Privacy Engineering provides the technical expertise to achieve that goal. Members of the team are champions for user privacy. We collaborate closely with legal and product engineering teams to translate legal requirements into engineering solutions and ensure our products meet the highest standards for privacy.

Here’s what you’ll do day-to-day:

• Strategic Leadership in Privacy Engineering: Lead the design and execution of advanced privacy solutions, ensuring alignment with global privacy laws such as HIPAA, GDPR and CCPA/CPRA. Spearhead initiatives that embed privacy into product lifecycle and system architecture.
• Technical Privacy Solutions Design: Innovate and develop privacy-centric features using techniques like anonymization, pseudonymization, and encryption. Ensure these solutions are robust, scalable, and enhance data protection measures.
• Automation and Efficiency Improvement: Lead automation projects for privacy rights request processing, data mapping, and orchestration of DSAR processes. Work with engineering teams to streamline privacy operations, improving efficiency and compliance.
• Risk Management and Compliance Oversight: Conduct comprehensive privacy-security assessments, identify vulnerabilities, and develop strategies to mitigate risks. Ensure that privacy by design and default are integral to product development and data handling practices.
• Cross-Functional and External Collaboration: Collaborate with internal teams (legal, compliance, engineering) and external partners to ensure alignment of business objectives with privacy requirements. Lead initiatives to enhance consumer trust through privacy-conscious product design.

Here’s what we’re looking for:

• Master’s or Doctorate degree in Computer Science, Privacy Engineering, or a related Privacy Compliance field.
  • Or Bachelors degree and 8-10 years of experience in Security Software Engineering or Privacy Software Engineering.
• Minimum 4 years of experience in privacy engineering, focusing on strategic program development and leadership.
• Deep understanding of privacy laws and regulations, with a proven track record in leading compliance initiatives. Direct knowledge and experience in this area is critical to translate compliance requirements to technical engineering specifications and solutions.
• Strong software development skills and experience in designing technical privacy solutions, particularly in automation and data protection.
• Excellent leadership, communication, and collaboration skills, with the ability to influence senior stakeholders and drive cross-functional projects.

Nice to Have:

• Experience with privacy management platforms like OneTrust.
• IAPP Certified Information Privacy Technologist (CIPT) certification or equivalent.
• Proficiency in Ruby on Rails, Python, and AWS infrastructure.
• Experience with traditional and real-time data redaction, anonymization, pseudonymization, and encryption techniques.

Our cash compensation amount for this role is targeted at $180,000/yr to $200,000/yr in Denver & most remote locations, and $220,000/yr to $240,000/yr in New York & San Francisco Bay Area. Stock equity is additional. Final offer amounts are determined by multiple factors including candidate experience and expertise and may vary from the amounts listed above

Gusto has physical office spaces in Denver, San Francisco, and New York City. Employees who are based in those locations will be expected to work from the office on designated days approximately 2-3 days per week (or more depending on role). The same office expectations apply to all Symmetry roles, Gusto’s subsidiary, whose physical office is in Scottsdale.

Note: The San Francisco office expectations encompass both the San Francisco and San Jose metro areas.

When approved to work from a location other than a Gusto office, a secure, reliable, and consistent internet connection is required.

Our customers come from all walks of life and so do we. We hire great people from a wide variety of backgrounds, not just because it’s the right thing to do, but because it makes our company stronger. If you share our values and our enthusiasm for small businesses, you will find a home at Gusto.

Gusto is proud to be an equal opportunity employer. We do not discriminate in hiring or any employment decision based on race, color, religion, national origin, age, sex (including pregnancy, childbirth, or related medical conditions), marital status, ancestry, physical or mental disability, genetic information, veteran status, gender identity or expression, sexual orientation, or other applicable legally protected characteristic. Gusto considers qualified applicants with criminal histories, consistent with applicable federal, state and local law. Gusto is also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. We want to see our candidates perform to the best of their ability. If you require a medical or religious accommodation at any time throughout your candidate journey, please fill out this form and a member of our team will get in touch with you.

Gusto takes security and protection of your personal information very seriously. Please review our Fraudulent Activity Disclaimer.