×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Crypto & DeFi Blockchain / Web3 Data Security

Senior Product Security Engineer - Cryptography

Job in Raleigh, Wake County, North Carolina, 27601, USA
Listing for: Red Hat, Inc.
Full Time position
Listed on 2026-06-03
Job specializations:
  • IT/Tech
    Cybersecurity, Crypto & DeFi, Blockchain / Web3, Data Security
Salary/Wage Range or Industry Benchmark: 131420 - 216870 USD Yearly USD 131420.00 216870.00 YEAR
Job Description & How to Apply Below

Red Hat's products form the foundation of the enterprise IT landscape, and the trust in those products is built on cryptography. As the cryptographic landscape faces its greatest shift in a generation—the transition to Post-Quantum Cryptography (PQC)—Red Hat is building out our portfolio team to govern our cryptographic future.

We are forming a Portfolio Crypto Team, a strategic partnership between Product Security (Prod Sec) and RHEL Security. As a Senior Product Security Engineer, your mission is to own and execute key cryptographic modernization initiatives and act as the primary enabler for product teams across Red Hat. You will be the recognized go-to person for cryptographic implementation outside of RHEL, helping teams adopt new policies, integrate modern libraries, and audit their applications.

This role expects you to be an expert and owner of cryptography, build relationships across teams, and enable others by scaling your expertise to drive portfolio-wide adoption.

What You Will Do
  • Container Cryptography Audits & Strategy:
    Act as the primary technical owner for auditing Go-based cryptographic implementations within Open Shift and container runtimes (CRI-O, Podman). You will identify and resolve cryptographic discrepancies where containerized applications fail to correctly leverage the host's FIPS or PQC providers.
  • Primary technical owner responsible for continuing the implementation and integration of Red Hat's cryptographic inventory tools (e.g., Crypto Scanner).
  • Partner with the Principal Product Security Engineer to define and implement scanner policies for detecting cryptographic assets in our build pipelines.
  • Work directly with pipeline and data teams to integrate these tools and produce a sustainable Cryptographic Bill of Materials (CBOM).
  • Portfolio's Crypto Enablement Partner:
    Partner with product teams to integrate Merkle Tree Certificate support within the portfolio’s unified security fabric.
  • Serve as the primary go-to technical consultant for product teams (like Open Shift, Ansible, and Middleware) navigating cryptographic migrations (e.g., PQC, FIPS).
  • Consult directly with engineers to audit their code, understand their dependencies (e.g., python-cryptography), and build migration plans that align with the portfolio-wide policy.
  • Enable other teams by creating documentation, best-practice guides, and office hours to scale your expertise.
  • Drive Foundational Crypto Integration and Dependency Management:
    Define the functional requirements for and partner on the integration of new cryptographic tools, such as runtime instrumentation for core libraries.
  • Track and manage critical cryptographic dependencies across the portfolio, working with RHEL Security and other teams to resolve blockers and ensure the successful, sequential delivery of modern crypto capabilities.
What You Will Bring
  • Multi-Language Technical Expertise:
    Deep, hands-on experience in Go and Python is required. You must be able to audit cryptographic implementations in these languages and understand their interaction with core C-based libraries (OpenSSL, NSS, libcrypto).
  • Applied Cryptography and PKI:
    Broad knowledge in applied cryptography (PKI, TLS, digital signatures). Strong understanding of modern cryptographic challenges, including Post-Quantum Cryptography (PQC).
  • Container & Cloud-Native Security:
    Strong understanding of OCI specifications and how container runtimes interact with cryptographic hardware (HSMs) or kernel-level providers.
  • Project Ownership:
    Proven experience owning and delivering complex, cross-team technical projects from design to completion. You can move from a technical deep-dive with a developer to a strategic roadmap discussion with a Product Manager.
  • Collaborative Leadership: A track record of building relationships across teams and acting as a recognized go-to person. You must be able to enable others to succeed.
  • Problem Solving:
    Strong analytical skills to diagnose complex dependencies and technical blockers in a large-scale software portfolio.
  • Bonus

    Skills:

    Previous experience contributing to or maintaining core cryptographic libraries or security-focused Go projects. Familiarity with SPIFFE/SPIRE or…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search