We're a small, focused team doing work that actually matters. If you care deeply about privacy, security, and building tools that put people in control — we'd love to talk.
We're fully remote, async-first, and believe the best work happens when people have the autonomy, tools, and trust to do it on their terms.
Work from anywhere on the planet. We're a distributed team and we've designed our culture around it — not bolted it on.
No pointless standups. We document decisions, communicate clearly, and respect everyone's deep work time.
Salary benchmarked to top-of-market rates. We pay fairly regardless of where you live.
Your work directly protects the privacy of real people. No bloat, no filler features — everything ships with purpose.
$2,000/year for courses, conferences, certifications, and books. We invest in your growth.
Comprehensive health benefits plus a $100/month wellness stipend for gym, therapy, or whatever keeps you at your best.
$1,500 equipment budget when you join, plus an annual $500 refresh so your workspace stays sharp.
Unlimited paid time off — and we actually mean it. We track outcomes, not hours.
All roles are remote unless otherwise noted. We hire globally.
Own and scale the global server infrastructure powering KemitVPN across 60+ countries. You'll work on routing, performance tuning, and reliability engineering at a network level.
Deep protocol work on WireGuard and OpenVPN implementations. You'll be responsible for encryption performance, obfuscation techniques, and ensuring protocol hardening across all platforms.
Build and maintain the server-side systems that power KemitVPN — from account management and billing to server orchestration and kill-switch logic.
Build and ship the KemitVPN mobile clients for iOS and Android. You'll own the tunnel lifecycle, connection UX, and platform-level network integrations including NEVPNManager and VpnService.
Drive security best practices across KemitVPN's CI/CD pipelines and cloud infrastructure. Own vulnerability scanning, incident response tooling, and compliance automation.
Be the first line of support for KemitVPN users. You'll troubleshoot connection issues, explain privacy concepts, and serve as a crucial feedback loop back to the engineering team.
Design and implement the cryptographic systems at the heart of KemitPass. Responsibilities include zero-knowledge proof integration, key derivation schemes, and ongoing threat modelling of the vault architecture.
Build the systems that keep user vaults encrypted, synced, and instantly available across every device. You'll work across the backend API and web vault client, with a strong focus on correctness and security.
Own the KemitPass browser extensions across Chrome, Firefox, Safari, and Edge. You'll build the autofill engine, form detection logic, and secure communication bridge between the extension and vault.
Define the UX of KemitPass across web, mobile, and browser extensions. You'll work closely with engineering to make complex security interactions feel effortless — without sacrificing power or correctness.
Conduct ongoing threat research across both KemitVPN and KemitPass. You'll run penetration tests, coordinate external audits, manage our bug bounty program, and keep our security posture ahead of the threat curve.
Advise on privacy law, GDPR/CCPA compliance, data protection policies, and government disclosure requests. You'll be the internal authority on what we can and cannot do — and a strong advocate for our users when push comes to shove.
We occasionally hire for positions we haven't posted yet. If you're passionate about privacy and think you'd be a great fit for KemitSecurity, send us a note — we read every application.