×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Crypto & DeFi Data Security Blockchain / Web3

Principal Product Security Engineer

Job in Boston, Suffolk County, Massachusetts, 02298, USA
Listing for: Red Hat
Full Time position
Listed on 2026-02-15
Job specializations:
  • IT/Tech
    Cybersecurity, Crypto & DeFi, Data Security, Blockchain / Web3
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

Job Title:

Principal Product Security Engineer, Cryptographic Architect

Red Hat’s products form the foundation of the enterprise IT landscape, and the trust in those products is built on cryptography. As the cryptographic landscape faces its greatest shift in a generation—the transition to Post-Quantum Cryptography (PQC)—Red Hat is building out our portfolio team to govern our cryptographic future.

We are forming a Portfolio Crypto Team, a strategic partnership between Product Security and RHEL Security. As a Principal Product Security Engineer, you will be the strategic leader for this team, acting as the chief architect for Red Hat’s portfolio-wide cryptographic strategy and policy.

Your mission is to ensure Red Hat’s portfolio remains secure, compliant, and agile in the face of evolving cryptographic threats. You will act as an expert across a group of projects, steer collaboration across products, and have a visible business impact by defining the long-term technical strategy for cryptography at Red Hat.

What You Will Do
  • Act as a Strategic Influencer and SME:
    • Serve as Red Hat’s senior subject matter expert (SME) on cryptographic strategy, influencing and contributing to upstream communities (e.g., Go, python) and standards bodies (IETF).
    • Consult with senior leadership and product architects to resolve complex, cross-portfolio dependencies and ensure strategic alignment.
  • Architect and Govern Portfolio-Wide Cryptographic Policy:
    • Own and evolve the Portfolio’s formal cryptographic policy, defining the standards for algorithm use, key lengths, and protocol implementation across all products.
    • Serve as the central authority for cryptographic compliance strategy, working with the Product teams and Business Unit leaders to align engineering efforts with government and regulatory requirements.
    • Lead the strategic response to future cryptographic inflection points (e.g., new PQC standards, major breaks).
  • Drive Long-Term Cryptographic Agility:
    • Architect and govern the strategy for a common cryptographic API in conjunction with RHEL Security, enabling product teams to consume crypto services in a standardized, crypto-agile way.
    • Steer collaboration across product teams (Open Shift, Middleware, Ansible, etc.) to gather requirements and drive adoption of centralized, modern cryptographic libraries.
  • Lead Cryptographic Risk Management Strategy:
    • Architect and own the long-term strategy for cryptographic discovery, runtime analysis, and transition management within our products and for our customers.
    • Define the high-level requirements for our Cryptographic Bill of Materials (CBOM) and runtime auditing tools, partnering with build and platform teams to create a sustainable solution for tracking crypto use and risk across the portfolio.
What You Will Bring
  • Technical Expertise:
    Deep and broad expertise in applied cryptography (PKI, TLS, digital signatures) and core libraries (OpenSSL, NSS, GnuTLS, go). Expert-level understanding of modern cryptographic challenges and protocols, including Post-Quantum Cryptography (PQC).
  • Strategic Leadership:
    Proven experience architecting and driving complex, cross-portfolio technical strategy in a large, matrixed organization. You must be able to steer collaboration across products.
  • Policy & Governance:
    Demonstrable experience in authoring, evangelizing, and governing technical security policy, especially related to compliance standards like FIPS.
  • Communication & Influence:
    Ability to translate complex cryptographic concepts into actionable plans for engineering, product management, and executive leadership.
  • Bonus

    Skills:

    Deep knowledge of HSMs/PKCS#11, hardware-based key protection, and standards body participation.

The salary range for this position is $ - $. Actual offer will be based on your qualifications.

Pay Transparency

Red Hat determines compensation based on several factors including but not limited to job location, experience, applicable skills and training, external market value, and internal pay equity. Annual salary is one component of Red Hat’s compensation package. This position may also be eligible for bonus, commission, and/or equity. For positions with Remote-US locations, the…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search