Build the trust layer
for the AI era.

What you'll do

• —Design and maintain the HMAC-SHA256 signing pipeline and key lifecycle management
• —Build and scale the append-only provenance ledger (write throughput, consistency guarantees)
• —Own HSM integration — key generation, rotation, revocation, and audit logging
• —Architect the public verification API for sub-50ms p99 response times globally
• —Lead incident response for all signing and ledger infrastructure

Requirements

• —5+ years backend engineering in production systems
• —Deep working knowledge of cryptographic primitives (HMAC, SHA-256, PKI, FIPS standards)
• —Experience with append-only or immutable data stores (event sourcing, log-structured systems)
• —Comfortable with HSM or KMS integration (AWS CloudHSM, Thales, or equivalent)
• —Strong written communication — we make decisions in documents

Nice to have

• —Experience with C2PA or content authenticity standards
• —SOC 2 audit experience or FIPS 140-2 certified environment work
• —Rust or Go; we are open to strong engineers in any language
• —Prior work at a security, compliance, or identity infrastructure company

What you'll do

• —Build and maintain Python, Node.js, and Java SDKs against the Ledgible REST API
• —Write and maintain the full API reference, guides, and code examples
• —Own the sandbox environment — mocked signing, test keys, simulated verification events
• —Instrument onboarding metrics and reduce time-to-first-signed-asset
• —Talk to developers directly — support forums, Slack, and integration calls with enterprise customers

Requirements

• —Production-grade Python and Node.js — you have shipped libraries others depend on
• —Strong technical writing — you can explain a signing protocol to a junior engineer in three paragraphs
• —Experience designing REST APIs or building against them at depth
• —Empathy for the developer audience — you have been the frustrated user reading bad docs
• —3+ years in a software engineering or developer advocacy role

Nice to have

• —Java SDK experience
• —Familiarity with OpenAPI / Swagger specs
• —Prior work at a developer tools, API, or security company
• —Experience with documentation platforms (Mintlify, ReadMe, Docusaurus)
• —Understanding of HMAC signing, JWT, or OAuth flows

What you'll do

• —Own a quota and manage the full enterprise sales cycle from outbound to close
• —Build pipeline in media publishing, enterprise AI, and agency/advertising verticals
• —Run technical discovery calls alongside engineering to scope integrations
• —Navigate enterprise procurement, security review, and legal negotiations
• —Feed market intelligence back to product — you are the voice of the buyer

Requirements

• —5+ years closing enterprise deals ($100K+ ACV)
• —Experience selling into Legal, Compliance, or Security buyers
• —Ability to hold a credible technical conversation with engineering teams
• —Track record of building pipeline from scratch — not inheriting warm territory
• —Comfortable in early-stage environments where process is still being built

Nice to have

• —Prior experience selling security, compliance, or data infrastructure
• —Existing network in media publishing or enterprise AI
• —Understanding of EU AI Act or content authenticity regulatory landscape
• —Experience with usage-based or API-first pricing models

What you'll do

• —Own SOC 2 Type II audit readiness — controls, evidence collection, auditor coordination
• —Operate HSM infrastructure including key generation, rotation schedules, and revocation procedures
• —Lead enterprise security reviews — respond to customer security questionnaires and on-site assessments
• —Maintain the public transparency log and internal security event audit trail
• —Define and test incident response procedures; be on-call for security events

Requirements

• —Direct experience with SOC 2 Type II audit preparation and remediation
• —Working knowledge of FIPS 140-2 and HSM operations (AWS CloudHSM, Thales nShield, or equivalent)
• —Experience writing and operating security controls in a cloud environment (AWS preferred)
• —Familiarity with cryptographic key management lifecycle
• —4+ years in a security engineering or security operations role

Nice to have

• —CISSP, CISM, or equivalent certification
• —Experience with EU AI Act or regulatory compliance frameworks beyond SOC 2
• —Background in fintech, legaltech, or other regulated industry security
• —Familiarity with C2PA or content authenticity standards
• —Prior work at a company that sells into enterprise legal or compliance buyers

What you'll do

• —Own the design of the dashboard — asset management, analytics, API key management, and compliance exports
• —Design the public verification flow: the experience for journalists, regulators, and consumers checking asset authenticity
• —Build and maintain a component library aligned to the Ledgible brand system
• —Run lightweight user research with developers and legal/compliance buyers
• —Work directly with engineers — no PM layer, no design-by-committee

Requirements

• —Strong Figma skills — components, auto-layout, prototyping, and dev handoff
• —Portfolio showing complex SaaS or developer tool product design
• —Ability to design at multiple fidelity levels — rough flow to production-ready spec
• —3+ years in product design, preferably at a B2B SaaS company
• —Comfort working without a dedicated PM — you will need to drive scope decisions

Nice to have

• —Experience designing for compliance, legal, or security products
• —Familiarity with design systems at a brand standard level (tokens, documentation)
• —Basic frontend knowledge — you can read JSX and spot implementation drift
• —Experience designing data-dense dashboards (analytics, audit logs, tables)
• —Prior work at an early-stage startup as the sole or first designer