1X · 3 months ago
Product Security Engineer, Cryptography & PKI
Palo Alto, California, United States
Full-time
Onsite
Mid, Senior Level1X is an AI and robotics company based in Palo Alto, California, focused on building general-purpose robots for an abundant society. The Product Security Engineer will design, implement, and scale cryptographic infrastructure to secure firmware, devices, and communications, ensuring the integrity of their robot fleet.
Artificial Intelligence (AI)ManufacturingRobotics
Responsibilities
Design and manage end‑to‑end cryptographic services, including public key infrastructure (PKI) and key lifecycle management
Establish HSM infrastructure as the root‑of‑trust for firmware signing and IoT endpoint authentication
Lead evaluation, procurement, installation, configuration, and integration of HSM vendor solutions
Architect key management systems that scale from hundreds of devices today to millions over time
Design remote device attestation mechanisms (e.g. fTPM, OP‑TEE, or equivalent) tied to the HSM root‑of‑trust
Build and automate secure firmware/bootloader signing pipelines
Define trust infrastructure and policies for author key generation, provisioning, rotation, and destruction
Secure build/artifact pipelines and code‑signing workflows
Develop factory provisioning architecture for mass key/certificate distribution
Support the development of secure communication protocols
Collaborate closely with Product Security, Cloud Infrastructure, Device Engineering, and SecOps teams as an individual contributor
Qualification
Required
Strong experience with cryptography, PKI design, and key management
Experience working with hardware security modules (HSMs), including vendor selection, integration, and root‑of‑trust establishment
Familiarity with remote device attestation frameworks (such as fTPM, OP‑TEE, or similar)
Demonstrated ability to design and scale secure firmware signing and code signing pipelines
Proven track record in defining and enforcing trust policies (key generation, rotation, destruction) and provisioning mechanisms
Experience securing build/artifact pipelines and developing secure communication protocols
Ability to work cross‑functionally with hardware, software, security operations, and infrastructure teams
High attention to detail, strong problem solving, with a mindset of anticipating vulnerabilities and designing defendable systems
Preferred
Vendor-specific HSM credentials or labs (Thales, Utimaco, AWS CloudHSM)
NVIDIA Orin or similar SoC platform experience
Background in post-quantum crypto evaluation and migration planning
Familiarity with large-scale factory provisioning tools (KMIP gateways, ACME/SCEP)
ProdSec/supply-chain security expertise (SBOMs, CI/CD hardening)
Experience in C/C++/Rust/GoLang (in addition to Python / Bash)
GoLang preferred
Additional security certifications
Company
1X
1X is an engineering and robotics company that develops humanoid robots designed to work alongside humans.
Founded in 2014
201-500 employees
H1B Sponsorship
1X has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (16)
2024 (3)
2023 (1)
Funding
Current Stage
Growth StageTotal Funding
$136.49MKey Investors
EQT VenturesOpenAI Startup Fund
2025-07-07Series B
2024-01-11Series B· $99.94M
2024-01-11Secondary Market
Recent News
2025-12-28
eeNews Europe
2025-12-24
2025-12-17
Company data provided by crunchbase