Software Engineer

About The Position

Requirements

• 6+ years of experience in IT with 4+ years in software engineering/development and secure coding practices using object oriented programming
• Strong knowledge and applicability of software architecture, development, methodologies and design principles including test-driven development
• Strong understanding and ability to apply cryptographic algorithms and standards in software, including RSA, ECC, AES, X.509
• Proven track record of owning customer-facing products from ideation to general acceptance, and flexibility to manage multiple projects and deliverables throughout lifecycle.

Nice To Haves

• 2+ years of experience deploying and maintaining cloud infrastructure with Kubernetes or OpenShift, and managing database instances (SQL Postgres, Redis, MongoDB)
• 2+ years building, maintaining, and integrating with production PKI systems and supporting cryptographic interfaces.
• Experience and understanding of industry security standards and applying them in our software solutions and processes, including NIST, OWASP, and relevant ISO and IEEE standards.
• Strong knowledge and applicability of software architecture, development, methodologies and design principles including test-driven development
• Familiarity with in-vehicle network architecture, modules, and protocols

Responsibilities

• Lead the full lifecycle of PKI and Key Management services supporting our vehicle products and ecosystem — lead customer requirements gathering, architecture design, implementation, testing, deployment, monitoring, and post-launch support.
• Design and develop robust, secure, and scalable RESTful APIs and web services for various features and use cases: CRL/OCSP, ACME, Certificate Issuance, message encryption/decryption, software signing, key rotation and certificate lifecycle management, HSM integration with PKCS11.
• Implement access control methods that enforce least privilege access principles using OAuth or mTLS.
• Implement and harden PKI and key services with deep knowledge of PKI industry standards, X.509, PKCS standards, elliptic curve cryptography (ECC) and RSA, post-quantum readiness, and hardware security module CSP integration.
• Apply hybrid encryption techniques with AES.
• Define and enforce PKI certificate policies and certificate profiles.
• Release and Deploy your apps through build server, CI/CD pipeline, and infrastructure involving on-premises and cloud Kubernetes
• Monitor and address findings regularly in code base through SAST, DAST, software quality and security vulnerability scanning.
• Drive and support testing at each stage of the development process.

Benefits

• bonuses or other incentives