Staff Cloud Engineer - Networking at Bill.com

What you'd actually do

Lead the design and evolution of our AWS network platform.

Act as the go to expert for cloud networking, partnering closely with infrastructure, security, and product engineering teams to ensure our network enables performance, reliability, and growth.

Architecting and operating large-scale AWS network environments, including the design and implementation of hub-and-spoke and multi-region topologies using AWS Transit Gateways and AWS Cloud WAN for high availability, scalability, and cost optimization.

Designing inter-VPC and inter-account connectivity patterns (e.g., VPC peering, Transit Gateway attachments, Cloud WAN core networks, and routing domains), including segmentation strategies for production, staging, and non-production workloads.

Automating network configuration using Terraform or similar Infrastructure as Code (IaC) tools, including reusable modules for VPCs, Transit Gateways, Cloud WAN segments, route tables, and security policies.

Skills

Required

Minimum of 7 years of relevant experience in network engineering
Significant portion of that experience specifically focused on designing, implementing, and managing network infrastructure in AWS or similar cloud environments
Proven experience architecting and operating large-scale AWS network environments
Hands-on experience designing inter-VPC and inter-account connectivity patterns
Proficiency in Terraform or similar Infrastructure as Code (IaC) tools
In-depth knowledge of networking protocols, including TCP/IP, BGP, OSPF, VLANs, VPNs, and DNS
Specialized experience managing Amazon Route 53 hosted zones and Cloudflare DNS/CDN configurations
Strong understanding of network security principles and best practices
Experience with network monitoring and performance optimization tools such as CloudWatch, VPC Flow Logs, and AWS Direct Connect
Ability to collaborate effectively with cross-functional teams
Excellent troubleshooting and problem-solving skills
Proven track record of designing and implementing scalable and resilient network solutions in a production environment
Strong communication skills and the ability to articulate network architecture and design decisions

Nice to have

AWS certification(s) such as AWS Certified Solutions Architect – Associate or AWS Certified Advanced Networking – Specialty

What the JD emphasized

architecting and operating large-scale AWS network environments

AWS Transit Gateways

AWS Cloud WAN

inter-VPC and inter-account connectivity

Terraform

TCP/IP, BGP, OSPF, VLANs, VPNs, and DNS

Amazon Route 53

Cloudflare DNS/CDN

network security principles and best practices

network monitoring and performance optimization

troubleshooting and problem-solving skills

designing and implementing scalable and resilient network solutions

Innovate with purpose

At BILL, we believe in empowering the businesses that drive our economy. By replacing outdated financial processes with innovative tools, we help businesses—from startups to established brands—make smarter decisions and gain control of their operations. And we don’t stop there: we’re creating the future of financial automation so businesses can spend more time on what matters.

Working here means you become part of a vision-driven team that’s ready to tackle challenges and build cutting-edge solutions. We value purpose, drive, and curiosity—and we thrive in a fast-paced, ever-changing environment. Whether in one of our offices in San Jose, CA, Draper, UT, or in a remote-eligible role, BILLders collaborate to deliver real impact for businesses that need more time in their busy weeks.

BILL builds high performing teams and we seek to hire the best talent for every role. We're committed to building a workplace that fosters inclusion and diverse perspectives, valuing each person’s unique skills and experiences. We’d love to hear from you—you might be just what we’re looking for, whether in this role or another.

✨ Let’s give businesses more time for what matters.

Make your impact within a rapidly growing Fintech Company

The Core Infrastructure Engineering Team is responsible for managing all of the infrastructure and databases at BILL. We utilize DataDog (for Logging, Metrics, and APM), Splunk, and CloudWatch (through Datadog integration) for real-time alerts via Slack and PagerDuty. We're big supporters of automating our workflows with Infrastructure as Code, and we love using Terraform to make it happen.

We are seeking a Staff Cloud Network Engineer to lead the design and evolution of our AWS network platform. This role is for a hands-on technical leader with deep expertise in AWS networking and infrastructure as code who will set standards, influence architecture, and drive scalable, secure networking solutions across the BILL application ecosystem. You will act as the go to expert for cloud networking, partnering closely with infrastructure, security, and product engineering teams to ensure our network enables performance, reliability, and growth.

**We’d love to chat if you have: ** Minimum of 7 years of relevant experience in network engineering, with a significant portion of that experience specifically focused on designing, implementing, and managing network infrastructure in AWS or similar cloud environments.

Proven experience architecting and operating large-scale AWS network environments, including the design and implementation of hub-and-spoke and multi-region topologies using AWS Transit Gateways and AWS Cloud WAN for high availability, scalability, and cost optimization.
Hands-on experience designing inter-VPC and inter-account connectivity patterns (e.g., VPC peering, Transit Gateway attachments, Cloud WAN core networks, and routing domains), including segmentation strategies for production, staging, and non-production workloads.
Proficiency in Terraform or similar Infrastructure as Code (IaC) tools for automating network configuration, including reusable modules for VPCs, Transit Gateways, Cloud WAN segments, route tables, and security policies.
In-depth knowledge of networking protocols, including TCP/IP, BGP, OSPF, VLANs, VPNs, and DNS, with specialized experience managing Amazon Route 53 hosted zones and Cloudflare DNS/CDN configurations, and the ability to apply these in cloud-based architectures (e.g., dynamic routing over Direct Connect or site-to-site VPN integrated with Transit Gateway / Cloud WAN).
Strong understanding of network security principles and best practices, including firewalls, IDS/IPS, encryption, access control, and the application of these controls at the VPC, Transit Gateway, and Cloud WAN layers to enforce least-privilege and zero-trust patterns.
Experience with network monitoring and performance optimization tools such as CloudWatch, VPC Flow Logs, and AWS Direct Connect, including baselining, capacity planning, and proactive detection of routing and latency issues in large-scale topologies.
Ability to collaborate effectively with cross-functional teams, including Systems Engineers, Developers, Security, and Architects, to translate application and business requirements into resilient AWS network architectures.
Excellent troubleshooting and problem-solving skills, with a focus on identifying and resolving complex network issues across on-premises, Direct Connect, VPN, Transit Gateway, Cloud WAN, and VPC boundaries.
AWS certification(s) such as AWS Certified Solutions Architect – Associate or AWS Certified Advanced Networking – Specialty is preferred.
Proven track record of designing and implementing scalable and resilient network solutions in a production environment, including multi-region failover, disaster recovery connectivity patterns, and change-managed rollouts using IaC.
Strong communication skills and the ability to articulate network architecture and design decisions to both technical and non-technical stakeholders, including clear documentation of routing policies, segmentation models, and connectivity patterns.

#LI

The estimated salary range for this role is noted below for our San Jose based role. Our ranges for each role and job level are based on a variety of factors including candidate experience, expertise, and geographic location and may vary from the amounts listed above. The role is also eligible for a competitive benefits package that includes: medical, dental, vision, life and disability insurance, 401(k) retirement plan, flexible spending & health savings account, paid holidays, paid time off, and other company benefits.

San Jose pay range

$159,800—$191,700 USD

The On Target Earnings (OTE) range for this role is noted below for our office location in San Jose, CA. This role is eligible to participate in BILL’s sales incentive and equity plans. Our ranges for each role and job level are based on a variety of factors including candidate experience, expertise, and geographic location and may vary from the amounts listed above. The role is also eligible for a competitive benefits package that includes: medical, dental, vision, life and disability insurance, 401(k) retirement plan, flexible spending & health savings account, paid holidays, paid time off, and other company benefits.

San Jose pay range

$180,000—$216,000 USD

The estimated hourly range for this role is noted below for our office location in San Jose, CA. Our ranges for each role and job level are based on a variety of factors including candidate experience, expertise, and geographic location and may vary from the amounts listed above. The role is also eligible for a competitive benefits package that includes: medical, dental, vision, life and disability insurance, 401(k) retirement plan, flexible spending & health savings account, paid holidays, paid time off, and other company benefits.

San Jose pay range

$180,000—$216,000 USD

The estimated base salary range for this role is noted below for our office location in Draper, UT. Additionally, this role is eligible to participate in BILL’s bonus and equity plan. Our ranges for each role and job level are based on a variety of factors including candidate experience, expertise, and geographic location and may vary from the amounts listed above. The role is also eligible for a competitive benefits package that includes: medical, dental, vision, life and disability insurance, 401(k) retirement plan, flexible spending & health savings account, paid holidays, paid time off, and other company benefits.

Draper UT pay range

$135,800—$162,900 USD

The On Target Earnings (OTE) range for this role is noted below for our office location in Draper, UT. This role is eligible to participate in BILL’s sales incentive and equity plans. Our ranges for each role and job level are based on a variety of factors including candidate experience, expertise, and geographic location and may vary from the amounts listed above. The role is also eligible for a competitive benefits package that includes: medical, dental, vision, life and disability insurance, 401(k) retirement plan, flexible spending & health savings account, paid holidays, paid time off, and other company benefits.

Draper UT pay range

$153,000—$183,600 USD

The estimated hourly range for this role is noted below for our office location in Draper, UT. Our ranges for each role and job level are based on a variety of factors including candidate experience, expertise, and geographic location and may vary from the amounts listed above. The role is also eligible for a competitive benefits package that includes: medical, dental, vision, life and disability insurance, 401(k) retirement plan, flexible spending & health savings account, paid holidays, paid time off, and other company benefits.

Draper UT pay range

$153,000—$183,600 USD

**What’s in it for you? **

Redefining how businesses automate their work is a fast-paced, exciting, and fun environment. But we also have benefits and perks to ensure the magic isn’t only experienced by our customers, but by our employees as well.

Here is a preview of some of the amazing benefits here at BILL:

100% paid employee health, dental, and vision plans (choose HMO, PPO, or HDHP)
HSA & FSA accounts
Life Insurance, Long & Short-term disability coverage
Employee Assistance Program (EAP)
11+ Observed holidays and wellness days and flexible time off
Employee Stock Purchase Program with employee discounts
Wellness & Fitness initiatives
Employee recognition and referral programs
And much more

Don’t believe us? Check out our culture, benefits, and teams on our career site, LinkedIn Life, or YouTube pages.

BILL is an Equal Opportunity Employer. We believe our best ideas come from the unique stories, perspectives, and experiences of our team members. We welcome people of all backgrounds, abilities, and identities to bring their authentic selves and contribute to our culture.

We are committed to a transparent, inclusive hiring process that reflects our values. If you need accommodations at any stage, please contact interviewaccommodations@hq.bill.com. To ensure a fair evaluation, our Candidate Integrity Policy prohibits the use of unapproved external assistance, including generative AI, during live interviews or assessments. Doing so will result in a review and potential disqualification.

Our Applicant Privacy Notice describes how BILL treats the personal information it receives from applicants.

Innovate with purpose

✨ Let’s give businesses more time for what matters.

Make your impact within a rapidly growing Fintech Company

Proven experience architecting and operating large-scale AWS network environments, including the design and implementation of hub-and-spoke and multi-region topologies using AWS Transit Gateways and AWS Cloud WAN for high availability, scalability, and cost optimization.
Hands-on experience designing inter-VPC and inter-account connectivity patterns (e.g., VPC peering, Transit Gateway attachments, Cloud WAN core networks, and routing domains), including segmentation strategies for production, staging, and non-production workloads.
Proficiency in Terraform or similar Infrastructure as Code (IaC) tools for automating network configuration, including reusable modules for VPCs, Transit Gateways, Cloud WAN segments, route tables, and security policies.
In-depth knowledge of networking protocols, including TCP/IP, BGP, OSPF, VLANs, VPNs, and DNS, with specialized experience managing Amazon Route 53 hosted zones and Cloudflare DNS/CDN configurations, and the ability to apply these in cloud-based architectures (e.g., dynamic routing over Direct Connect or site-to-site VPN integrated with Transit Gateway / Cloud WAN).
Strong understanding of network security principles and best practices, including firewalls, IDS/IPS, encryption, access control, and the application of these controls at the VPC, Transit Gateway, and Cloud WAN layers to enforce least-privilege and zero-trust patterns.
Experience with network monitoring and performance optimization tools such as CloudWatch, VPC Flow Logs, and AWS Direct Connect, including baselining, capacity planning, and proactive detection of routing and latency issues in large-scale topologies.
Ability to collaborate effectively with cross-functional teams, including Systems Engineers, Developers, Security, and Architects, to translate application and business requirements into resilient AWS network architectures.
Excellent troubleshooting and problem-solving skills, with a focus on identifying and resolving complex network issues across on-premises, Direct Connect, VPN, Transit Gateway, Cloud WAN, and VPC boundaries.
AWS certification(s) such as AWS Certified Solutions Architect – Associate or AWS Certified Advanced Networking – Specialty is preferred.
Proven track record of designing and implementing scalable and resilient network solutions in a production environment, including multi-region failover, disaster recovery connectivity patterns, and change-managed rollouts using IaC.
Strong communication skills and the ability to articulate network architecture and design decisions to both technical and non-technical stakeholders, including clear documentation of routing policies, segmentation models, and connectivity patterns.

#LI

San Jose pay range

$159,800—$191,700 USD

San Jose pay range

$180,000—$216,000 USD

San Jose pay range

$180,000—$216,000 USD

Draper UT pay range

$135,800—$162,900 USD

Draper UT pay range

$153,000—$183,600 USD

Draper UT pay range

$153,000—$183,600 USD

**What’s in it for you? **

Here is a preview of some of the amazing benefits here at BILL:

100% paid employee health, dental, and vision plans (choose HMO, PPO, or HDHP)
HSA & FSA accounts
Life Insurance, Long & Short-term disability coverage
Employee Assistance Program (EAP)
11+ Observed holidays and wellness days and flexible time off
Employee Stock Purchase Program with employee discounts
Wellness & Fitness initiatives
Employee recognition and referral programs
And much more

Don’t believe us? Check out our culture, benefits, and teams on our career site, LinkedIn Life, or YouTube pages.

Our Applicant Privacy Notice describes how BILL treats the personal information it receives from applicants.