Senior Cloud Security Architect, Security Engineering

About 1X

We build humanoid robots that work alongside people to solve labor shortages and create abundance.

Location:

San Carlos, CA (on-site)

As the Senior Cloud Security Architect, you will design and drive a secure‑by‑default cloud posture across AWS, Google Cloud, Cloudflare, and our engineering platforms. You will architect scalable foundations, implement pragmatic guardrails, and partner closely with Engineering to reduce risk without slowing development. This is a hands‑on senior role focused on measurable risk reduction through strong architecture and effective use of cloud security tooling, including Wiz.

Your work will ensure our cloud environments are resilient, auditable, and built for long‑term scale.

• Own and evolve cloud security architecture across AWS, Google Cloud, and Cloudflare
• Design secure‑by‑default foundations including account and project structure, network segmentation, identity integration, secrets management, encryption, and logging
• Implement pragmatic guardrails through policy, tooling, and CI/CD controls that reduce risk while enabling engineering velocity
• Drive cloud posture management and remediation using Wiz, including prioritization, verification, and measurable risk reduction
• Partner with Engineering and Platform teams to secure repositories and pipelines across Git Lab and Git Hub
• Strengthen CI/CD security through branch protections, secrets scanning, least privilege tokens, and artifact integrity controls
• Operationalize controls for production access, privileged actions, and break‑glass workflows
• Continuously monitor for drift, enforce ownership, and standardize reusable security patterns across environments

• 8+ years of experience in security with deep hands‑on cloud security expertise in AWS and/or Google Cloud
• Strong cloud architecture skills including segmentation, identity patterns, encryption strategies, and telemetry design
• Experience operating CSPM or CNAPP platforms, ideally Wiz, and driving real‑world remediation programs
• Experience securing Git Lab and/or Git Hub environments, including CI/CD pipelines, tokens, secrets management, and software supply chain controls
• Experience implementing secure production access models and privileged access governance
• Strong communication skills with the ability to drive adoption of standards across engineering teams
• Experience operating in cloud‑native and fast‑scaling environments

• Salary Range: $180,000 – $235,000 + Equity
• Health, dental, and vision insurance
• 401(k) with company match
• Paid time off and holidays

1X is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship, age, marital status, medical condition, genetic information, disability, military or veteran status, or any other characteristic protected under applicable federal, state, or local law.