Responsibilities:

📍Design, build, deploy, and maintain software and security solutions supporting the Signing team 📍Develop tools and automation that integrate security into systems and process 📍Improve the capabilities of the existing signing security infrastructure with a mindset towards infrastructure as code 📍Improve availability and reliability while maintaining acceptable security 📍Integrate the use of hardware security mechanisms into the secure build infrastructure. Example hardware security mechanisms include a trusted platform module (TPM), hardware security module (HSM), trusted execution environment (TEE), smartcard, and/or other similar hardware key storage mechanisms. Example applications of these mechanisms include key storage, signing, encryption, code attestation, and secure boot 📍Participate in disaster recovery (DR) scenarios to validate operability of physical and digital material

Minimum Qualifications:

📍2+ years implementing software with security primitives 📍Hands-on experience in at least one or more cloud platforms (e.g., AWS, GCP, Azure, or others) 📍Hands-on expertise with at least one area of software security 📍Strong understanding of systems/network security, secure protocol design, secure build and supply chain management, encryption, authentication, key management and applied cryptography 📍Experience implementing software automation processes applied in a software security environment 📍Proficiency in a common scripting language including but not limited to Python, Ruby, etc. 📍Able to troubleshoot and debug issues, and demonstrate a methodical approach to root cause analysis 📍Strong written and verbal communication skills; attentive to details