Pay Range
Annually:
$168,000 - $240,000
Equity:
0 -0.5 %
Description
What you’ll do:
- Build and manage the PKI that provides trusted certificates to all of our internal services with fine-grained authentication and authorization controls
- Create and support robust client-side automation tooling to enable the use of short-lived certificates while maintaining reliability
- Promote the use of strongly-authenticated mTLS for all service-to-service communications and work with other engineering teams to develop solutions for their use cases
- Communicate and execute on periodic CA rotations and migration to best practices
- Contribute to the strengthening of CA and leaf certificate key protection schemes to elevate our security profile
What you’ll need
- Familiarity with PKI standards and their surrounding ecosystem (X.509, TLS, etc.)
- Experience running an internal or public PKI with deep understanding of their requirements and pitfalls
- Worked with codebases and developed in Go or Rust
Bonus points:
- Familiarity with SPIFFE/SPIRE or other service identity framework/standards
- Experience executing CA rotations for a reasonably large environment
- Worked with HSMs, TPMs, or other platform TEEs (AMD SEV, Intel SGX, Apple Secure Enclave)
Compensation:
- Compensation may be adjusted depending on work location, or levelling.
- For Colorado-based hires: Estimated annual salary of $168,000 - $206,000.
- For New York City, Washington, and California (excluding Bay Area) based hires: Estimated annual salary of $187,000 - $229,000.
- For Bay Area-based hires: Estimated annual salary of $196,000 - $240,000
Equity:
- This role is eligible to participate in Cloudflare’s equity plan.
Health & Welfare Benefits:
- Medical/Rx Insurance
- Dental Insurance
- Vision Insurance
- Flexible Spending Accounts
- Commuter Spending Accounts
- Fertility & Family Forming Benefits
- On-demand mental health support and Employee Assistance Program
- Global Travel Medical Insurance
Financial Benefits:
- Short and Long Term Disability Insurance
- Life & Accident Insurance
- 401(k) Retirement Savings Plan
- Employee Stock Participation Plan
Time Off
- Flexible paid time off covering vacation and sick leave
- Leave programs, including parental, pregnancy health, medical, and bereavement leave