Software Engineer

We are seeking an exceptional Software Engineer specializing in Public Key Infrastructure (PKI) and secure API services to own the end-to-end lifecycle of mission-critical cryptographic systems. You will design, build, deploy, and maintain high-assurance PKI and security service APIs that power certificate issuance, lifecycle management, revocation, and integration for the connected vehicle product ecosystem.

Key ResponsibilitiesLead the full lifecycle of PKI and Key Management services supporting our vehicle products and ecosystem lead customer requirements gathering, architecture design, implementation, testing, deployment, monitoring, and post-launch support. Design and develop robust, secure, and scalable RESTful APIs and web services for various features and use cases: CRL/OCSP, ACME, Certificate Issuance, message encryption/decryption, software signing, key rotation and certificate lifecycle management, HSM integration with PKCS11. Implement access control methods that enforce least privilege access principles using OAuth or mTLS. Implement and harden PKI and key services with deep knowledge of PKI industry standards, X.509, PKCS standards, elliptic curve cryptography (ECC) and RSA, post-quantum readiness, and hardware security module CSP integration. Apply hybrid encryption techniques with AES. Define and enforce PKI certificate policies and certificate profiles. Release and Deploy your apps through build server, CI/CD pipeline, and infrastructure involving on-premises and cloud Kubernetes Monitor and address findings regularly in code base through SAST, DAST, software quality and security vulnerability scanning. Drive and support testing at each stage of the development process.

Skills RequiredSoftware Testing, PostgreSQL, Computer engineering, Software Development Lifecycle, Software Documentation, Application Development, Bouncy Castle Cryptographic, Cloud Infrastructure, Google Cloud Platform, .NET Core, .NET Developer, Cyber Security, C#, Application Testing, Agile Software Development

Skills PreferredKubernetes, Technical Communication, Technical Requirements, Technical Documentation, Application Architect, Technical Analysis

Experience Required6+ years of experience in IT with 4+ years in software engineering/development and secure coding practices using object oriented programming Strong knowledge and applicability of software architecture, development, methodologies and design principles including test-driven development Strong understanding and ability to apply cryptographic algorithms and standards in software, including RSA, ECC, AES, X.509 Proven track record of owning customer-facing products from ideation to general acceptance, and flexibility to manage multiple projects and deliverables throughout lifecycle.

Experience Preferred2+ years of experience deploying and maintaining cloud infrastructure with Kubernetes or OpenShift, and managing database instances (SQL Postgres, Redis, MongoDB) 2+ years building, maintaining, and integrating with production PKI systems and supporting cryptographic interfaces. Experience and understanding of industry security standards and applying them in our software solutions and processes, including NIST, OWASP, and relevant ISO and IEEE standards. Strong knowledge and applicability of software architecture, development, methodologies and design principles including test-driven development Familiarity with in-vehicle network architecture, modules, and protocols

Education RequiredBachelor's degree in Computer Science / Engineering

The Stefanini Group is a global provider of offshore, onshore and near shore outsourcing, IT digital consulting, systems integration, application, and strategic staffing services to Fortune 1000 enterprises around the world. Our presence is in countries like the Americas, Europe, Africa, and Asia, and more than four hundred clients across a broad spectrum of markets, including financial services, manufacturing, telecommunications, chemical services, technology, public sector, and utilities. Stefanini is a CMM level 5, IT consulting company with a global presence. We are a CMM Level 5 company.