Senior Privacy Engineer

Company: Gusto
Location: New York
Posted on: February 1, 2025

Job Description:

About GustoGusto is a modern, online people platform that helps small businesses take care of their teams. On top of full-service payroll, Gusto offers health insurance, 401(k)s, expert HR, and team management tools. Today, Gusto offices in Denver, San Francisco, and New York serve more than 300,000 businesses nationwide.Our mission is to create a world where work empowers a better life, and it starts right here at Gusto. That's why we're committed to building a collaborative and inclusive workplace, both physically and virtually.About the Role:As a Senior Privacy Engineer at Gusto, you will lead strategic privacy initiatives, ensuring that our systems and products comply with global privacy regulations while embedding privacy into our product and technological ecosystem. Your expertise will guide the development and implementation of cutting-edge privacy solutions, focusing on automation, data protection, and compliance.About the Team:Our Privacy Engineering team, as part of Gusto's Security organization, focuses on designing and implementing privacy-preserving product and internal solutions. The Security team's mission is to be the most trustworthy place for customer data, and Privacy Engineering provides the technical expertise to achieve that goal. Members of the team are champions for user privacy. We collaborate closely with legal and product engineering teams to translate legal requirements into engineering solutions and ensure our products meet the highest standards for privacy.Here's what you'll do day-to-day:

• Strategic Leadership in Privacy Engineering: Lead the design and execution of advanced privacy solutions, ensuring alignment with global privacy laws such as HIPAA, GDPR, and CCPA/CPRA. Spearhead initiatives that embed privacy into product lifecycle and system architecture.
• Technical Privacy Solutions Design: Innovate and develop privacy-centric features using techniques like anonymization, pseudonymization, and encryption. Ensure these solutions are robust, scalable, and enhance data protection measures.
• Automation and Efficiency Improvement: Lead automation projects for privacy rights request processing, data mapping, and orchestration of DSAR processes. Work with engineering teams to streamline privacy operations, improving efficiency and compliance.
• Risk Management and Compliance Oversight: Conduct comprehensive privacy-security assessments, identify vulnerabilities, and develop strategies to mitigate risks. Ensure that privacy by design and default are integral to product development and data handling practices.
• Cross-Functional and External Collaboration: Collaborate with internal teams (legal, compliance, engineering) and external partners to ensure alignment of business objectives with privacy requirements. Lead initiatives to enhance consumer trust through privacy-conscious product design.Here's what we're looking for:
  • Master's or Doctorate degree in Computer Science, Privacy Engineering, or a related Privacy Compliance field.
    • Or Bachelor's degree and 8-10 years of experience in Security Software Engineering or Privacy Software Engineering.
    • Minimum 4 years of experience in privacy engineering, focusing on strategic program development and leadership.
    • Deep understanding of privacy laws and regulations, with a proven track record in leading compliance initiatives. Direct knowledge and experience in this area is critical to translate compliance requirements to technical engineering specifications and solutions.
    • Strong software development skills and experience in designing technical privacy solutions, particularly in automation and data protection.
    • Excellent leadership, communication, and collaboration skills, with the ability to influence senior stakeholders and drive cross-functional projects.Nice to Have:
      • Experience with privacy management platforms like OneTrust.
      • IAPP Certified Information Privacy Technologist (CIPT) certification or equivalent.
      • Proficiency in Ruby on Rails, Python, and AWS infrastructure.
      • Experience with traditional and real-time data redaction, anonymization, pseudonymization, and encryption techniques.Our cash compensation amount for this role is targeted at $180,000/yr to $200,000/yr in Denver & most remote locations, and $220,000/yr to $240,000/yr in New York & San Francisco Bay Area. Stock equity is additional. Final offer amounts are determined by multiple factors including candidate experience and expertise and may vary from the amounts listed above.Gusto has physical office spaces in Denver, San Francisco, and New York City. Employees who are based in those locations will be expected to work from the office on designated days approximately 2-3 days per week (or more depending on role).Our customers come from all walks of life and so do we. We hire great people from a wide variety of backgrounds, not just because it's the right thing to do, but because it makes our company stronger. If you share our values and our enthusiasm for small businesses, you will find a home at Gusto.Gusto is proud to be an equal opportunity employer. We do not discriminate in hiring or any employment decision based on race, color, religion, national origin, age, sex (including pregnancy, childbirth, or related medical conditions), marital status, ancestry, physical or mental disability, genetic information, veteran status, gender identity or expression, sexual orientation, or other applicable legally protected characteristic. Gusto considers qualified applicants with criminal histories, consistent with applicable federal, state, and local law. Gusto is also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures.
        #J-18808-Ljbffr

Keywords: Gusto, East Orange , Senior Privacy Engineer, Engineering , New York, New Jersey