Job Specifications
About Evervault
Evervault is building the security layer of the internet. Developer-first primitives for encryption, tokenization, and secure compute - currently focused on payments, where the stakes (and the compliance burden) are highest.
We help engineering teams collect, process, store, and enrich their most sensitive data - and comply with the frameworks that govern it. Our customers range from early-stage startups to the largest merchants and payment service providers on the internet, including Rippling, Ramp, and Sorare.
We're backed by Index Ventures, Sequoia Capital, Kleiner Perkins, and Frontline Ventures - with angels including Dylan Field (Figma), Olivier Pomel (Datadog), and Alex Stamos (former Facebook CSO).
The Role
We're hiring Platform Engineers to work on the foundational infrastructure that powers everything at Evervault.
You'll work across two areas: the core platform that underpins all of our products, and the Foundations product suite - Relay, Functions, and Enclaves. These are the primitives our customers use to encrypt, decrypt, and process sensitive data at scale.
Relay is a high-throughput network proxy that encrypts and decrypts data in transit - sitting between our customers' services and their APIs, handling thousands of requests per second.
Functions are secure serverless runtimes (Node.js and Python) that process encrypted data without exposing it in plaintext.
Enclaves let developers deploy Docker containers into AWS Nitro Secure Enclaves - confidential computing environments with cryptographic attestation, no persistent storage, and no shell access.
This is low-level, high-stakes infrastructure. Networking primitives, custom runtimes, confidential computing, encryption engines, and the kind of systems work where correctness, performance, and security all matter equally.
You'll own problems end-to-end, from understanding the customer use case, to designing the system, to shipping production code, to operating it at scale.
We work mostly in Rust and Node.js, built on AWS. But we care far more about your engineering fundamentals than knowledge of a particular language or framework.
What You'll Work On
Building and operating high-throughput forward and reverse proxies that encrypt and decrypt data in transit at tens of thousands of requests per second
Designing and evolving custom serverless runtimes for secure code execution in isolated environments
Working with AWS Nitro Enclaves and confidential computing - building tooling for deployment, attestation, and scaling of secure enclave workloads
Developing and maintaining the core encryption engine that powers all of Evervault's products
Designing developer-facing APIs, CLIs, and SDKs for infrastructure primitives
Working with low-level networking: TLS termination, mTLS, HTTP CONNECT proxying, VSock channels, and custom DNS
Building observability, transaction logging, and debugging tooling for environments where traditional monitoring doesn't apply
Improving deployment pipelines, CI/CD, and infrastructure automation across the platform
Performance engineering - profiling, benchmarking, and optimising latency and throughput in latency-sensitive paths
Working directly with customers - debugging integrations, understanding their architectures, and shaping the roadmap from real problems
Who You Are
Excellent taste. In code, in APIs, in documentation, in system design. You know what good looks like and you hold yourself and others to a high bar.
Full-stack, not pigeonholed. You're most at home in backend and infrastructure - but you're comfortable across the stack when the problem demands it. You'd rather learn something new than stay in your lane.
Curious. You read RFCs. You've opinions on different enclave implementations. You know why TLS 1.3 matters. You dig into source code for fun. You ask why.
Relentlessly product-minded. You're building developer infrastructure - and you care deeply about how it's used. You think about the developer experience of every API and CLI you design. You measure your work by adoption and reliability, not just technical elegance.
A systems thinker. You have deep fundamentals in distributed systems, networking, and operating systems - not just application-level frameworks. You think about memory models, socket behaviour, TLS handshakes, and the performance implications of design decisions. You're comfortable working at layers of the stack most engineers never touch.
Comfortable in the deep end. Confidential computing, custom runtimes, encryption at scale - these aren't checkbox skills, they're the domain. You don't need to know all of it coming in, but you need to be the kind of engineer who gets excited about this level of depth and learns fast.
Founder energy. You may have started something before, or you want to one day. Either way, you operate with ownership, urgency, and bias for action. You take problems to completion - and you don't wait to be told what to do.
An excellent
About the Company
At Evervault, we're obsessed with saving developers time securing sensitive data, specifically payment data. We make it incredibly easy to tokenize cards, optimize payment margins, acheive PCI compliance, or quickly spin-up card products.
Companies all over the world trust Evervault to secure and enhance their payments stack. Our flexible security platform gives control of securing their payments infrastructure, allows them to avoid gateway vendor lock-in, and accelerates any card product launches with confidence. This mea...
Know more