Job Description

Senior Cloud Security Architect, Security Engineering
San Carlos, CA (on-site)

About 1X
We build humanoid robots that work alongside people to solve labor shortages and create abundance.

The Role
As the Senior Cloud Security Architect, you will design and drive a secure-by-default cloud posture across AWS, Google Cloud, Cloudflare, and our engineering platforms. You will architect scalable foundations, implement pragmatic guardrails, and partner closely with Engineering to reduce risk without slowing development. This is a hands-on senior role focused on measurable risk reduction through strong architecture and effective use of cloud security tooling, including Wiz. Your work will ensure our cloud environments are resilient, auditable, and built for long-term scale.

You Will

• Own and evolve cloud security architecture across AWS, Google Cloud, and Cloudflare

• Design secure-by-default foundations including account and project structure, network segmentation, identity integration, secrets management, encryption, and logging

• Implement pragmatic guardrails through policy, tooling, and CI/CD controls that reduce risk while enabling engineering velocity

• Drive cloud posture management and remediation using Wiz, including prioritization, verification, and measurable risk reduction

• Partner with Engineering and Platform teams to secure repositories and pipelines across GitLab and GitHub

• Strengthen CI/CD security through branch protections, secrets scanning, least privilege tokens, and artifact integrity controls

• Operationalize controls for production access, privileged actions, and break-glass workflows

• Continuously monitor for drift, enforce ownership, and standardize reusable security patterns across environments

Requirements

Must Have

• 8+ years of experience in security with deep hands-on cloud security expertise in AWS and/or Google Cloud

• Strong cloud architecture skills including segmentation, identity patterns, encryption strategies, and telemetry design

• Experience operating CSPM or CNAPP platforms, ideally Wiz, and driving real-world remediation programs

• Experience securing GitLab and/or GitHub environments, including CI/CD pipelines, tokens, secrets management, and software supply chain controls

• Experience implementing secure production access models and privileged access governance

• Strong communication skills with the ability to drive adoption of standards across engineering teams

• Experience operating in cloud-native and fast-scaling environments

Benefits & Compensation

• Salary Range: $180,000 – $235,000 + Equity

• Health, dental, and vision insurance

• 401(k) with company match

• Paid time off and holidays

Equal Opportunity Employer
1X is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship, age, marital status, medical condition, genetic information, disability, military or veteran status, or any other characteristic protected under applicable federal, state, or local law.