This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

The Core Infrastructure Engineering Team is responsible for managing all of the infrastructure and databases at BILL. We utilize DataDog (for Logging, Metrics, and APM), Splunk, and CloudWatch (through Datadog integration) for real-time alerts via Slack and PagerDuty. We're big supporters of automating our workflows with Infrastructure as Code, and we love using Terraform to make it happen.

We are seeking a Staff Cloud Network Engineer to lead the design and evolution of our AWS network platform. This role is for a hands-on technical leader with deep expertise in AWS networking and infrastructure as code who will set standards, influence architecture, and drive scalable, secure networking solutions across the BILL application ecosystem. You will act as the go-to expert for cloud networking, partnering closely with infrastructure, security, and product engineering teams to ensure our network enables performance, reliability, and growth.

Qualifications

• Minimum of 7 years of relevant experience in network engineering, with a significant portion of that experience specifically focused on designing, implementing, and managing network infrastructure in AWS or similar cloud environments.
• Proven experience architecting and operating large-scale AWS network environments, including the design and implementation of hub-and-spoke and multi-region topologies using AWS Transit Gateways and AWS Cloud WAN for high availability, scalability, and cost optimization.
• Hands-on experience designing inter-VPC and inter-account connectivity patterns (e.g., VPC peering, Transit Gateway attachments, Cloud WAN core networks, and routing domains), including segmentation strategies for production, staging, and non-production workloads.
• Proficiency in Terraform or similar Infrastructure as Code (IaC) tools for automating network configuration, including reusable modules for VPCs, Transit Gateways, Cloud WAN segments, route tables, and security policies.
• In-depth knowledge of networking protocols, including TCP/IP, BGP, OSPF, VLANs, VPNs, and DNS, with specialized experience managing Amazon Route 53 hosted zones and Cloudflare DNS/CDN configurations.
• Strong understanding of network security principles and best practices, including firewalls, IDS/IPS, encryption, access control, and the application of these controls at the VPC, Transit Gateway, and Cloud WAN layers to enforce least-privilege and zero-trust patterns.
• Experience with network monitoring and performance optimization tools such as CloudWatch, VPC Flow Logs, and AWS Direct Connect, including baselining, capacity planning, and proactive detection of routing and latency issues in large-scale topologies.
• Ability to collaborate effectively with cross-functional teams, including Systems Engineers, Developers, Security, and Architects, to translate application and business requirements into resilient AWS network architectures.
• Excellent troubleshooting and problem-solving skills, with a focus on identifying and resolving complex network issues across on-premises, Direct Connect, VPN, Transit Gateway, Cloud WAN, and VPC boundaries.
• AWS certification(s) such as AWS Certified Solutions Architect – Associate or AWS Certified Advanced Networking – Specialty is preferred.
• Proven track record of designing and implementing scalable and resilient network solutions in a production environment, including multi-region failover, disaster recovery connectivity patterns, and change-managed rollouts using IaC.
• Strong communication skills and the ability to articulate network architecture and design decisions to both technical and non-technical stakeholders, including clear documentation of routing policies, segmentation models, and connectivity patterns.

Requirements

• San Jose pay range: $159,800 — $191,700 USD
• On Target Earnings (OTE) range for San Jose: $180,000 — $216,000 USD
• Hourly range for San Jose: $180,000 — $216,000 USD
• Draper UT pay range: $135,800 — $162,900 USD
• On Target Earnings (OTE) range for Draper UT: $153,000 — $183,600 USD
• Hourly range for Draper UT: $153,000 — $183,600 USD

Benefits

• 100% paid employee health, dental, and vision plans (choose HMO, PPO, or HDHP)
• HSA & FSA accounts
• Life Insurance, Long & Short-term disability coverage
• Employee Assistance Program (EAP)
• 11+ Observed holidays and wellness days and flexible time off
• Employee Stock Purchase Program with employee discounts
• Wellness & Fitness initiatives
• Employee recognition and referral programs
• And much more