Principal Engineer, Security Products — Cryptography and Key Lifecycle Management
Related skills
grpc rust aws kubernetes go📋 Description
- Lead design and evolution of encryption and key lifecycle management.
- Design/build integrations with external key sources (HashiCorp Vault, AWS KMS, HSMs).
- Collaborate with product teams to enable safe multi-cloud key management.
- Define auth patterns and policy models for key management APIs.
- Establish SLI/SLOs for Remote Key Encryption (RKE) including availability and latency.
- Author/review technical designs and RFCs for new RKE capabilities; mentor engineers.
🎯 Requirements
- 8+ years of experience building and operating distributed backend systems.
- Deep experience with encryption at rest and key management (envelope encryption, key hierarchies).
- Hands-on with a major KMS/secrets manager (AWS KMS, Vault, Azure Key Vault, GCP KMS, or HSMs).
- Strong proficiency in Go or Rust; building networked services (gRPC/REST) on Linux/Kubernetes.
- Applied cryptography concepts: AES-GCM/CTR, key wrapping, KDFs, envelope encryption, and key separation.
- Experience designing multi-tenant services with strong isolation and auth semantics.
🎁 Benefits
- Medical, dental, and vision insurance - 100% paid by CoreWeave
- 401(k) with generous employer match
- Flexible PTO
- Tuition Reimbursement
- ESPP (Employee Stock Purchase Program)
- Mental Wellness Benefits through Spring Health
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest — finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!