Product Security Engineer

Product Security Engineer

San Carlos, CA (on-site)

About 1X

We build humanoid robots that work alongside people to solve labor shortages and create abundance.

The Role

As a Product Security Engineer, you will help secure NEO end-to-end—from the operating system and cryptographic infrastructure running on the robot to the cloud services, networks, and deployment pipelines that support it. You will identify vulnerabilities before adversaries do, partner closely with engineering teams to design and implement secure systems, and help establish the security foundations required to safely deploy humanoid robots at scale. This role sits at the intersection of robotics, embedded systems, cloud infrastructure, and applied security engineering.

You Will

• Audit code and systems across NEO’s technology stack, including bootloaders, Linux userspace, cloud services, and CI/CD pipelines to identify and drive remediation of security vulnerabilities

• Lead security initiatives end-to-end and serve as a technical security partner across Robotics, AI, Infrastructure, Manufacturing, and Enterprise Engineering teams

• Conduct penetration testing, threat modeling, and risk assessments against robots, supporting infrastructure, and cloud services

• Design and implement security-critical systems such as secure boot chains, code-signing infrastructure, attestation frameworks, and hardened platform services

• Define and improve the security architecture for robot provisioning, deployment, software updates, and fleet operations

• Evaluate system designs and engineering decisions through a security lens and provide actionable guidance to development teams

• Partner with internal and external stakeholders to improve product security posture across hardware, firmware, software, and cloud environments

• Help establish security standards, processes, and best practices for next-generation humanoid robotics platforms

Must Have

• 5+ years of experience in product security, offensive security, platform security, or a closely related engineering discipline

• Strong experience with Linux operating system internals and security mechanisms including namespaces, syscall filtering, service isolation, and system hardening

• Proficiency in software development and code auditing using C, C++, Rust, Go, or Python

• Hands-on penetration testing experience against production systems or embedded devices

• Strong understanding of secure system design principles across hardware, firmware, software, and cloud environments

• Experience in one or more of the following areas:

  • Offensive security against Linux-based or embedded systems

  • Vulnerability research, exploit development, and attack-chain analysis

  • Secure boot, verified boot, trusted execution environments, or platform attestation

  • Cryptography, PKI, certificate lifecycle management, and HSM-backed trust infrastructure

  • Cloud security, Kubernetes, infrastructure-as-code, and CI/CD security

  • Secure OTA update systems, rollback protection, signature verification, and recovery mechanisms

• Excellent communication skills with the ability to influence engineering teams and drive remediation efforts

• Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical discipline, or equivalent practical experience

Benefits & Compensation

• Salary Range:

  • Product Security Engineer: Salary Range: $137,861 – $250,000 + Equity

• Health, dental, and vision insurance

• 401(k) with company match

• Paid time off and holidays

• Parental leave

• Flexible Spending Accounts (FSA) and Health Savings Accounts (HSA)

• Commuter benefits

• Short-term and long-term disability coverage

• Life insurance

• Employee Assistance Program (EAP)

• Onsite snacks and catered lunches

Equal Opportunity Employer

1X is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship, age, marital status, medical condition, genetic information, disability, military or veteran status, or any other characteristic protected under applicable federal, state, or local law.