Product Security Engineer 1X San Carlos, CA Job Details Full-time $137,861
- $250,000 a year 22 hours ago Benefits Commuter assistance Health savings account Paid holidays Disability insurance Health insurance Dental insurance Flexible spending account Paid time off Parental leave Employee assistance program Vision insurance 401(k) matching Life insurance Qualifications Software engineering Testing and evaluation Production systems Security system vulnerability testing Operating system security Linux Penetration testing implementation Full Job Description About 1X We're building humanoid robots that work in home•doing the chores, handling the tasks, and giving people their time back.
Simple, but it's not. To do this right, we have to solve robotics, AI, manufacturing
- at the same time, at scale, in a form factor that has to be safe enough to live with your family. If you're inspired by this, you'll thrive here. We've been at this since 2014 and we're at the point where the hard problems are behind us and the hard work is in front of us. NEO is our flagship
- a home robot designed to move, learn, and operate in the real world alongside real people. We're not demoing it
- we're shipping it. We're excited to meet you, if this excites you. If you've spent your career working on problems that matter and want to see them actually reach the world
- this is that moment. We're scaling, we're hiring with intention, and we need people who want to build something that will genuinely change how humans spend their time
- safely creating abundance for all.
About the Team The Security Engineering team is responsible for protecting our robots, infrastructure, cloud environments, and internal platforms that power 1X. We partner closely with Robotics, AI, Infrastructure, Manufacturing, and Enterprise Engineering teams to embed security directly into how we build and operate humanoid robotics systems. The Product Security team focuses on the end-to-end security of NEO itself, the operating system, the cryptographic systems that establish trust, the cloud services NEO talks to, and the pipelines that build and sign everything in between. Your Charter Secure NEO end-to-end. You will analyze the system services, operating systems, cryptographic infrastructure, networks, and cloud services that power 1X humanoid robots, identify weaknesses before adversaries do, and partner with engineering teams to design and ship the fixes. This role is critical to ensuring that a robot operating inside someone's home can be trusted by its owner, by its operators, and by us.. Key Outcomes Audit code and systems across NEO's stack from bootloader and Linux userspace to cloud services and CI/CD pipelines to identify and drive remediation of security vulnerabilities Lead security initiatives end-to-end, serving as the technical point of contact and partnering with Robotics, AI, Infrastructure, and Manufacturing teams to design secure-by-default systems Conduct penetration tests, threat models, and risk assessments against NEO and its supporting infrastructure, prioritizing the issues that matter most Design and contribute production code for security-critical components such as secure boot chains, code-signing pipelines, attestation flows, and hardened system services Help define the security architecture for how humanoid robots are provisioned, deployed, updated, and operated at scale Key Competencies Strong investigative and analytical problem-solving skills; the ability to look at an unfamiliar system and find the weak point Hands-on experience with secure architecture design across at least one of: Linux/embedded systems cryptography and PKI cloud and CI/CD infrastructure Strong programming and code-auditing skills in C, C++, Rust, Go, or Python Excellent systems-thinking across hardware, firmware, software, and cloud boundaries Strong written and spoken communication, and the ability to drive remediation across team and vendor boundaries Minimum Requirements 5+ years of experience in product security, offensive security, or a closely related engineering role Strong experience with Linux operating system internals and security mechanisms (namespaces, syscall filtering, Linux systems hardening, least-privilege service design) Proficiency in software development and code auditing, with shipping experience in C, C++, Rust, Go or Python Penetration testing experience against real production systems Security expertise in one or more of: Offensive security against Linux-based devices vulnerability research, exploit development, and end-to-end attack chains against embedded or production systems Secure boot, verified boot, and Trusted Execution Environments (e.g., OP-TEE, fTPM) Cryptography, PKI design, key lifecycle management, and HSM-backed roots of trust Cloud security (AWS, GCP, or Azure), infrastructure-as-code, Kubernetes, and CI/CD pipeline security Secure firmware update systems for embedded devices over-the-air delivery, rollback protection, signature verification, and recovery from failed updates Bachelor's degree in Computer Science, Information Security, Engineering, or related technical field or equivalent experience Preferred Skills Experience with NVIDIA Jetson or similar SoC platforms Background in firmware/code-signing pipelines and artifact integrity (SBOMs, supply-chain hardening) Experience with factory provisioning at scale mass key and certificate distribution, key management, ACME/SCEP HSM vendor evaluation and procurement experience (Thales, Utimaco, AWS CloudHSM, or similar) Familiarity with remote device attestation frameworks Exposure to post-quantum cryptography evaluation and migration planning Experience supporting robotics, automotive, manufacturing, or other hardware engineering environments Exposure to zero trust architectures, identity systems, and secrets management platforms Experience operating in fast-paced startup environments What does a successful 1X Team Member look like Ideal 1X candidates are builders. Our teammates move fast, own their work completely, and treat time like it's the one thing you can't get back because it is. They say what they mean, finish what they start, and hold themselves to a standard before anyone has to ask. We push each other to be better, and we do it with honesty and respect Compensation Range $137,861
- $250,000 + Equity Benefits Comprehensive medical, dental, and vision coverage Generous paid time off, company holidays, and parental leave 401(k) plan with company match (100% on the first 3% of contributions, 50% on the next 2%) Flexible Spending Accounts (FSA) and Health Savings Accounts (HSA) options Commuter benefits (transit and parking) Short-term and long-term disability, and life insurance Employee Assistance Program (EAP) for mental health, financial, and personal support Onsite snacks and catered lunches Equal Opportunity Employer 1X is an Equal Opportunity Employer.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship, age, marital status, medical condition, genetic information, disability, military or veteran status, justice system impact, or any other characteristic protected under applicable federal, state, or local law.
Compensation Range:
$137,861
