Home › Companies › 1x › Product Security Engineer - Cryptography and PKI
Product Security Engineer - Cryptography and PKI
1x · San Carlos, CA, San Carlos, California, United States · On Site · Deleted · Recruitee
Job facts
| Field | Value |
|---|---|
| Company | 1x |
| Title | Product Security Engineer - Cryptography and PKI |
| Normalized title | - |
| Department / team | Software Engineering |
| Location | San Carlos, CA, United States |
| Work model | On Site |
| Employment type | Full Time |
| Salary | USD 137861 240000 year |
| Status | deleted |
| ATS provider | Recruitee |
| Posted / first seen | 2025-09-18 / 2026-05-30 |
| Changed / last seen | 2026-06-06 / 2026-06-04 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from 1x. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Recruitee. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in San Carlos. | Open |
| Department jobs | Active postings in Software Engineering. | Open |
| Work model jobs | Active On Site postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | 1x |
| Source | 7310ce3e-8c47-41cd-818f-c4e749f33d15 |
| ATS provider | Recruitee |
Description
description
Product Security Engineer, Cryptography & PKI
San Carlos, CA (on-site)
About 1X
We build humanoid robots that work alongside people to solve labor shortages and create abundance.
The Role
As a Product Security Engineer specializing in cryptography and PKI, you will build and scale the cryptographic infrastructure that secures 1X’s robots and communications. Your work will ensure trust, integrity, and long-term security across the company’s hardware and software systems.
You Will
Design and manage end-to-end cryptographic services, including PKI and key lifecycle management
Establish HSM infrastructure as the root of trust for firmware signing and IoT authentication
Lead the evaluation, procurement, configuration, and integration of HSM vendor solutions
Architect scalable key management systems for future growth
Design remote device attestation mechanisms leveraging technologies such as fTPM or OP-TEE
Build and automate secure pipelines for firmware and bootloader signing
Define infrastructure and policies for author key provisioning, rotation, and destruction
Secure build systems and code-signing workflows
Develop factory provisioning architecture for mass key and certificate distribution
Support secure communication protocol development
Collaborate with cross-functional teams including Product Security, Cloud Infrastructure, Device Engineering, and SecOps
requirements
Must Have
Strong experience with cryptography, PKI design, and key management
Experience working with hardware security modules (HSMs), including vendor selection, integration, and root‑of‑trust establishment
Familiarity with remote device attestation frameworks (such as fTPM, OP‑TEE, or similar)
Demonstrated ability to design and scale secure firmware signing and code signing pipelines
Proven track record in defining and enforcing trust policies (key generation, rotation, destruction) and provisioning mechanisms
Experience securing build/artifact pipelines and developing secure communication protocols
Ability to work cross‑functionally with hardware, software, security operations, and infrastructure teams
High attention to detail, strong problem solving, with a mindset of anticipating vulnerabilities and designing defendable systems
Nice to Have:
Vendor-specific HSM credentials or labs (Thales, Utimaco, AWS CloudHSM)
NVIDIA Orin or similar SoC platform experience
Background in post-quantum crypto evaluation and migration planning
Familiarity with large-scale factory provisioning tools (KMIP gateways, ACME/SCEP)
ProdSec/supply-chain security expertise (SBOMs, CI/CD hardening)
Experience in C/C++/Rust/GoLang (in addition to Python / Bash)
GoLang preferred
Additional security certifications
Benefits & Compensation
Salary Range: $137,861 – $240,000 + Equity
Health, dental, and vision insurance
401(k) with company match
Paid time off and holidays
Equal Opportunity Employer
1X is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship, age, marital status, medical condition, genetic information, disability, military or veteran status, or any other characteristic protected under applicable federal, state, or local law.
sharing_description
Product Security Engineer, Cryptography & PKISan Carlos, CA (on-site)About 1XWe build humanoid robots that work alongside people to solve labor shortages and create abundance.The RoleAs a Product
Full job record
| Job ID | cef1d16e107c9f2519250256d242d505005814a5 |
| Org ID | dfc3d078-8d83-479c-af6b-7dd45e32db79 |
| Source ID | 7310ce3e-8c47-41cd-818f-c4e749f33d15 |
| Board ID | 7310ce3e-8c47-41cd-818f-c4e749f33d15 |
| Provider | recruitee |
| Provider Job Key | 2278163 |
| Title | Product Security Engineer - Cryptography and PKI |
| Normalized Title | — |
| Status | deleted |
| Active | no |
| Location Text | San Carlos, CA, San Carlos, California, United States |
| Department | Software Engineering |
| Team | — |
| Employment Type | full_time |
| Workplace Type | on_site |
| Remote Policy | — |
| Country | United States |
| Region | CA |
| City | San Carlos |
| Salary Raw | USD 137861 240000 year |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://1x.recruitee.com/o/product-security-engineer-cryptography-and-pki |
| Apply URL | https://1x.recruitee.com/o/product-security-engineer-cryptography-and-pki/c/new |
| First Seen At | 2026-05-30 05:52:02Z |
| Last Seen At | 2026-06-04 08:10:31Z |
| Last Checked At | 2026-06-06 22:52:25Z |
| Last Changed At | 2026-06-06 22:52:25Z |
| Inactive At | 2026-06-06 22:52:25Z |
| Source Posted At | 2025-09-18 21:53:28Z |
| Source Updated At | 2026-03-24 21:03:32Z |
| Raw Payload Uri | s3://bluework-jobs-prod-raw-590183727216/raw/provider=recruitee/board=1x.recruitee.com/date=2026-06-04/2026-06-04T08-10-30-754Z-2b77f00bacbd24d0898d7f33732ba2e2e2956f059dfbba42284aaa0cc4857e99.json |
Event Fields
{
"content_hash": "bc14c06c3e3d1a49126397fe6b87db9d18eef6c7d60970f881aa7972f6caf5f2",
"source_hash": "b528e266bd37f048285929608a2286f2036f31d0de44fc549aefff9cae376d46",
"last_changed_at": "2026-06-06T22:52:25.420Z",
"active_status": "deleted"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "San Carlos, CA, San Carlos, California, United States",
"city": "San Carlos",
"region": "CA",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-04T08:10:31.501Z",
"launch_scope": {
"reason": "recruitee_production_catalog",
"included": true,
"location": {
"raw": "San Carlos, CA, San Carlos, California, United States",
"city": "San Carlos",
"region": "CA",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": null,
"salary_period": null,
"workplace_type": "on_site",
"salary_currency": null
}Extensions
{}Native Structured
{
"id": 2278163,
"city": "San Carlos ",
"guid": "dc3nu",
"slug": "product-security-engineer-cryptography-and-pki",
"tags": [],
"title": "Product Security Engineer - Cryptography and PKI",
"hybrid": false,
"remote": false,
"salary": {
"max": "240000",
"min": "137861",
"period": "year",
"currency": "USD"
},
"status": "published",
"country": "United States",
"on_site": true,
"close_at": null,
"location": "San Carlos , California, United States",
"position": 29,
"highlight": "<p style=\"min-height: 1.7em;\"></p><p style=\"min-height: 1.7em;\"></p>",
"locations": [
{
"id": 236876,
"city": "San Carlos ",
"name": "San Carlos, CA",
"note": null,
"state": "California",
"street": null,
"country": "United States",
"state_code": "CA",
"postal_code": null,
"country_code": "US",
"translations": {
"en": {
"city": "San Carlos ",
"name": "San Carlos, CA",
"note": null,
"street": null,
"postal_code": null
}
}
}
],
"max_hours": null,
"min_hours": null,
"created_at": "2025-09-18 21:46:11 UTC",
"department": "Software Engineering",
"options_cv": "required",
"state_code": "CA",
"state_name": "California",
"updated_at": "2026-03-24 21:03:32 UTC",
"careers_url": "https://1x.recruitee.com/o/product-security-engineer-cryptography-and-pki",
"cover_image": null,
"description": "<p><strong>Product Security Engineer, Cryptography & PKI</strong></p><p>San Carlos, CA (on-site)</p><p style=\"min-height: 1.7em;\"></p><p><strong>About 1X</strong><br>We build humanoid robots that work alongside people to solve labor shortages and create abundance.</p><p style=\"min-height: 1.7em;\"></p><p><strong>The Role</strong><br>As a Product Security Engineer specializing in cryptography and PKI, you will build and scale the cryptographic infrastructure that secures 1X’s robots and communications. Your work will ensure trust, integrity, and long-term security across the company’s hardware and software systems.</p><p style=\"min-height: 1.7em;\"></p><p><strong>You Will</strong></p><ul><li><p>Design and manage end-to-end cryptographic services, including PKI and key lifecycle management</p></li><li><p>Establish HSM infrastructure as the root of trust for firmware signing and IoT authentication</p></li><li><p>Lead the evaluation, procurement, configuration, and integration of HSM vendor solutions</p></li><li><p>Architect scalable key management systems for future growth</p></li><li><p>Design remote device attestation mechanisms leveraging technologies such as fTPM or OP-TEE</p></li><li><p>Build and automate secure pipelines for firmware and bootloader signing</p></li><li><p>Define infrastructure and policies for author key provisioning, rotation, and destruction</p></li><li><p>Secure build systems and code-signing workflows</p></li><li><p>Develop factory provisioning architecture for mass key and certificate distribution</p></li><li><p>Support secure communication protocol development</p></li><li><p>Collaborate with cross-functional teams including Product Security, Cloud Infrastructure, Device Engineering, and SecOps</p></li></ul>",
"postal_code": null,
"company_name": "1X Technologies AS",
"country_code": "US",
"published_at": "2025-09-18 21:53:28 UTC",
"requirements": "<p><strong>Must Have</strong></p><ul><li><p>Strong experience with cryptography, PKI design, and key management</p></li><li><p>Experience working with hardware security modules (HSMs), including vendor selection, integration, and root‑of‑trust establishment</p></li><li><p>Familiarity with remote device attestation frameworks (such as fTPM, OP‑TEE, or similar)</p></li><li><p>Demonstrated ability to design and scale secure firmware signing and code signing pipelines</p></li><li><p>Proven track record in defining and enforcing trust policies (key generation, rotation, destruction) and provisioning mechanisms</p></li><li><p>Experience securing build/artifact pipelines and developing secure communication protocols</p></li><li><p>Ability to work cross‑functionally with hardware, software, security operations, and infrastructure teams</p></li><li><p>High attention to detail, strong problem solving, with a mindset of anticipating vulnerabilities and designing defendable systems</p></li></ul><p style=\"min-height: 1.7em;\"></p><p><strong>Nice to Have:</strong></p><ul><li><p>Vendor-specific HSM credentials or labs (Thales, Utimaco, AWS CloudHSM)</p></li><li><p>NVIDIA Orin or similar SoC platform experience</p></li><li><p>Background in post-quantum crypto evaluation and migration planning</p></li><li><p>Familiarity with large-scale factory provisioning tools (KMIP gateways, ACME/SCEP)</p></li><li><p>ProdSec/supply-chain security expertise (SBOMs, CI/CD hardening)</p></li><li><p>Experience in C/C++/Rust/GoLang (in addition to Python / Bash)</p></li><li><p>GoLang preferred</p></li><li><p>Additional security certifications</p></li></ul><p style=\"min-height: 1.7em;\"></p><p><strong>Benefits & Compensation</strong></p><ul><li><p>Salary Range: $137,861 – $240,000 + Equity</p></li><li><p>Health, dental, and vision insurance</p></li><li><p>401(k) with company match</p></li><li><p>Paid time off and holidays</p></li></ul><p style=\"min-height: 1.7em;\"></p><p><strong>Equal Opportunity Employer</strong><br>1X is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship, age, marital status, medical condition, genetic information, disability, military or veteran status, or any other characteristic protected under applicable federal, state, or local law.</p>",
"translations": {
"en": {
"title": "Product Security Engineer - Cryptography and PKI",
"highlight": "<p style=\"min-height: 1.7em;\"></p><p style=\"min-height: 1.7em;\"></p>",
"description": "<p><strong>Product Security Engineer, Cryptography & PKI</strong></p><p>San Carlos, CA (on-site)</p><p style=\"min-height: 1.7em;\"></p><p><strong>About 1X</strong><br>We build humanoid robots that work alongside people to solve labor shortages and create abundance.</p><p style=\"min-height: 1.7em;\"></p><p><strong>The Role</strong><br>As a Product Security Engineer specializing in cryptography and PKI, you will build and scale the cryptographic infrastructure that secures 1X’s robots and communications. Your work will ensure trust, integrity, and long-term security across the company’s hardware and software systems.</p><p style=\"min-height: 1.7em;\"></p><p><strong>You Will</strong></p><ul><li><p>Design and manage end-to-end cryptographic services, including PKI and key lifecycle management</p></li><li><p>Establish HSM infrastructure as the root of trust for firmware signing and IoT authentication</p></li><li><p>Lead the evaluation, procurement, configuration, and integration of HSM vendor solutions</p></li><li><p>Architect scalable key management systems for future growth</p></li><li><p>Design remote device attestation mechanisms leveraging technologies such as fTPM or OP-TEE</p></li><li><p>Build and automate secure pipelines for firmware and bootloader signing</p></li><li><p>Define infrastructure and policies for author key provisioning, rotation, and destruction</p></li><li><p>Secure build systems and code-signing workflows</p></li><li><p>Develop factory provisioning architecture for mass key and certificate distribution</p></li><li><p>Support secure communication protocol development</p></li><li><p>Collaborate with cross-functional teams including Product Security, Cloud Infrastructure, Device Engineering, and SecOps</p></li></ul>",
"requirements": "<p><strong>Must Have</strong></p><ul><li><p>Strong experience with cryptography, PKI design, and key management</p></li><li><p>Experience working with hardware security modules (HSMs), including vendor selection, integration, and root‑of‑trust establishment</p></li><li><p>Familiarity with remote device attestation frameworks (such as fTPM, OP‑TEE, or similar)</p></li><li><p>Demonstrated ability to design and scale secure firmware signing and code signing pipelines</p></li><li><p>Proven track record in defining and enforcing trust policies (key generation, rotation, destruction) and provisioning mechanisms</p></li><li><p>Experience securing build/artifact pipelines and developing secure communication protocols</p></li><li><p>Ability to work cross‑functionally with hardware, software, security operations, and infrastructure teams</p></li><li><p>High attention to detail, strong problem solving, with a mindset of anticipating vulnerabilities and designing defendable systems</p></li></ul><p style=\"min-height: 1.7em;\"></p><p><strong>Nice to Have:</strong></p><ul><li><p>Vendor-specific HSM credentials or labs (Thales, Utimaco, AWS CloudHSM)</p></li><li><p>NVIDIA Orin or similar SoC platform experience</p></li><li><p>Background in post-quantum crypto evaluation and migration planning</p></li><li><p>Familiarity with large-scale factory provisioning tools (KMIP gateways, ACME/SCEP)</p></li><li><p>ProdSec/supply-chain security expertise (SBOMs, CI/CD hardening)</p></li><li><p>Experience in C/C++/Rust/GoLang (in addition to Python / Bash)</p></li><li><p>GoLang preferred</p></li><li><p>Additional security certifications</p></li></ul><p style=\"min-height: 1.7em;\"></p><p><strong>Benefits & Compensation</strong></p><ul><li><p>Salary Range: $137,861 – $240,000 + Equity</p></li><li><p>Health, dental, and vision insurance</p></li><li><p>401(k) with company match</p></li><li><p>Paid time off and holidays</p></li></ul><p style=\"min-height: 1.7em;\"></p><p><strong>Equal Opportunity Employer</strong><br>1X is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship, age, marital status, medical condition, genetic information, disability, military or veteran status, or any other characteristic protected under applicable federal, state, or local law.</p>",
"sharing_image": null,
"sharing_title": "Product Security Engineer - Cryptography and PKI",
"locations_question": "What is your preferred work location?",
"sharing_description": "Product Security Engineer, Cryptography & PKISan Carlos, CA (on-site)About 1XWe build humanoid robots that work alongside people to solve labor shortages and create abundance.The RoleAs a Product "
}
},
"category_code": "internet",
"mailbox_email": "[email protected]",
"options_phone": "required",
"options_photo": "off",
"options_title": "off",
"sharing_image": null,
"sharing_title": "Product Security Engineer - Cryptography and PKI",
"dynamic_fields": [],
"education_code": "professional",
"open_questions": [
{
"id": 3593813,
"body": "What is your annual salary expectations in USD?",
"kind": "string",
"options": {},
"position": 1,
"required": false,
"translations": {
"en": {
"body": "What is your annual salary expectations in USD?"
}
},
"open_question_options": []
},
{
"id": 3593814,
"body": "Where did you find out about us? Please indicate person and place.",
"kind": "string",
"options": {},
"position": 2,
"required": false,
"translations": {
"en": {
"body": "Where did you find out about us? Please indicate person and place."
}
},
"open_question_options": []
},
{
"id": 3593815,
"body": "This job is located in San Carlos, California. Are you already based in California or will you be relocating?",
"kind": "string",
"options": {},
"position": 3,
"required": false,
"translations": {
"en": {
"body": "This job is located in San Carlos, California. Are you already based in California or will you be relocating?"
}
},
"open_question_options": []
},
{
"id": 3593816,
"body": "Would you be able to work without visa sponsorship now and in the future?",
"kind": "string",
"options": {},
"position": 4,
"required": false,
"translations": {
"en": {
"body": "Would you be able to work without visa sponsorship now and in the future?"
}
},
"open_question_options": []
},
{
"id": 3593817,
"body": "If offered a job, how quickly would you be able to start? Please specify if you have any notice period at current work.",
"kind": "string",
"options": {},
"position": 5,
"required": false,
"translations": {
"en": {
"body": "If offered a job, how quickly would you be able to start? Please specify if you have any notice period at current work."
}
},
"open_question_options": []
},
{
"id": 3593818,
"body": "To ensure there are no conflicts of interest, can you confirm whether you have any close personal relationships—such as family members, roommates, or close friends—who are currently employed by any of our competitors? If so, can you please provide more details?",
"kind": "string",
"options": {},
"position": 6,
"required": false,
"translations": {
"en": {
"body": "To ensure there are no conflicts of interest, can you confirm whether you have any close personal relationships—such as family members, roommates, or close friends—who are currently employed by any of our competitors? If so, can you please provide more details?"
}
},
"open_question_options": []
},
{
"id": 3593819,
"body": "I grant permission for 1X to contact me directly regarding potential future job opportunities.",
"kind": "string",
"options": {},
"position": 7,
"required": false,
"translations": {
"en": {
"body": "I grant permission for 1X to contact me directly regarding potential future job opportunities."
}
},
"open_question_options": []
}
],
"experience_code": "experienced",
"careers_apply_url": "https://1x.recruitee.com/o/product-security-engineer-cryptography-and-pki/c/new",
"locations_question": "What is your preferred work location?",
"max_hours_per_week": null,
"min_hours_per_week": null,
"options_salutation": "off",
"sharing_description": "Product Security Engineer, Cryptography & PKISan Carlos, CA (on-site)About 1XWe build humanoid robots that work alongside people to solve labor shortages and create abundance.The RoleAs a Product ",
"employment_type_code": "fulltime_permanent",
"options_cover_letter": "optional",
"locations_question_type": "multiple_choice",
"location_question_visible": false,
"locations_question_required": true
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/cef1d16e107c9f2519250256d242d505005814a5?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/dfc3d078-8d83-479c-af6b-7dd45e32db79JSONGET https://api.bluedoor.sh/job-postings/v1/sources/7310ce3e-8c47-41cd-818f-c4e749f33d15JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/cef1d16e107c9f2519250256d242d505005814a5/eventsJSON