Hiring role PKI Engineer with Code Signing at Atlanta, GA / Raleigh, NC (day one Onsite)

Job Title: PKI Engineer with Code Signing

Work Location: Atlanta, GA / Raleigh, NC (day one Onsite)

Duration: Long term contract

Experience Level: 8+ Years

Description:

• Code signing knowledge in terms of L3 level hands-on experience in development, very technical role working with developers to bake in code signing into SDLCs.
• Maintain automated code signing workflows integrated with CI/CD pipelines(e.g,GITLAB, Azure devops, Jenkins etc).
• Proficiency with Linux/Unix and Windows, especially for managing cryptographic systems.
• Understanding of Signing applications and how it is compatible with different build and job.
• Incident response Knowledge of how to handle breaches or compromise related to cryptographic assets.
• The Position requires extensive knowledge in code sign and its implementation in existing enterprise. Must have working knowledge of CI/CD concepts and understand where code signing fits in the software build lifecycle.
• Assist in implementing basic validation checks to confirm that all artifacts are signed before release.
• Verifying Software Origin, ensuring Code Integrity, enhancing User Experience and Trust and applications of Code Signing.
• The role will partner with application and system teams to on-board new entities with certificates and sustain existing implementations.
• Candidate should be aware of Code sign with CI/CD pipelines to ensure integrity and authenticity of software artifacts.
• Candidate should have expertise in handling code sign keys/certificate and Timestamp process along with awareness of validation and verification process in code sign.
• Collaborate with devops and applications / Business level to implement code sign into organization.
• Assist in troubleshooting code signing issues during pipeline executions or failures and implement preventive measures.
• Maintain awareness of certificate lifecycle management and policies to avoid deployment issues.
• Maintain inventory and expiration monitoring for signing certificates.
• Collaborate with Devops engineers to support integration of code sign and CI tools.
• Identify risks related to misuse or compromise of signing credentials.
• Analyzing all aspects of the existing infrastructure and providing recommendations to enhance system reliability, availability, serviceability, and scalability.
• Hands on experience on Azure kye vault, HSM , Venafi Code Sign is required.
• Contribute to documentation of signing steps with CI/CD processes for team enablement and audit readiness.
• Provide training and guidance to developers regarding code signing best practices