×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Product Security Lead – Code Signing & Secure Software Hardware Platform Solutions

Remote / Online - Candidates ideally in
Oshawa, Ontario, Canada
Listing for: Experis Canada
Remote/Work from Home position
Listed on 2026-06-10
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Job Description & How to Apply Below
Position: Product Security Lead – Code Signing & Secure Software for Hardware Platform Solutions

Product Security Lead – Code Signing & Secure Software for Hardware Platform Solutions

Contract Duration: 1 year, renewable

Work Location:

Remote Work in Canada

Our client is a leader in design, manufacturing solutions. Within Hardware Platform Solutions (HPS), our engineering teams design and deliver advanced computing, storage, and platform technologies that require strong product security controls across the software development, build, signing, and release lifecycle. This role is intended to strengthen that capability by providing dedicated ownership for code signing services and the supporting controls required to maintain a secure software chain of custody.

Position Summary

We are seeking an experienced Product Security Lead to join the IT Support and Enablement function supporting the Hardware Platform Solutions (HPS) organization. In this role, you will take ownership of the code signing operating model used by HPS Software Engineering teams and drive its deployment, support, governance, and scale-up across product programs and design centers.

Serving as the key security and technical liaison across Information Security, Dev Ops, Software Engineering, infrastructure teams, and external vendors, you will ensure that our signing infrastructure, certificates, signing packages, key management practices, and supporting processes are secure, supportable, and production-ready. You will also help engineering teams standardize approved signing methods across Linux and Windows environments while addressing operational constraints, access controls, and customer-driven product security requirements.

Core Responsibilities

1. Code Signing Architecture & Governance

Own Lifecycle Strategy:
Design, roll out, and govern the HPS code signing capability, supporting a secure software chain of custody from initial build through final production release.

Standardize Workflows:
Establish and maintain approved signing standards and integration patterns across both Linux and Windows development environments.

Develop Operational Frameworks:
Formulate standard operating procedures (SOPs), governance controls, and self-service onboarding guidance for engineering teams consuming signing services across multiple product programs and global design locations.

2. Certificate and Key Management Infrastructure

Coordinate Asset Provisioning:
Manage the lifecycle, provisioning, and distribution of signing certificates, cryptographic keys, signing policies, and signing packages.

Platform Ownership:
Partner with Enterprise Information Security and external vendors to deploy, configure, and maintain AppViewX PKI+ and associated hardware security module (HSM) backed signing services.

Traceability & Auditing:
Guarantee absolute integrity, control, and traceability of signing assets and workflows to ensure HPS software releases align with corporate policy and stringent customer security requirements.

3. Security Operations, Risk, & Tool Integration

Mitigate Operational Risks:
Identify, assess, and resolve security risks associated with signing deployments, including privilege management, secure package distribution, and cryptographic verification gaps.

Triage Tooling Gaps:
Track and address limitations in unsupported or non-standard engineering tools (such as sbsign, intel-pfr-signing-utility, socsec, Windows .bin signing, and Windows OpenSSL support), defining compliant alternative paths.

Secure Access Control:
Collaborate with security architects to define support models that eliminate unnecessary elevated administrative access and align with enterprise zero-trust principles.

4. Engineering Enablement & Cross-Functional Collaboration

Technical Liaison:
Serve as the primary technical enablement lead for Software Engineering and Dev Ops teams, troubleshooting package integration failures, API consumption issues, and HSM-related workflow blocks.

Drive Service Maturity:
Lead proof-of-concept (POC) evaluations, transition frameworks, and operational readiness reviews to seamlessly transition capabilities from pilot status to scalable, production-grade enterprise services.

5. Future-State Security Capability & Identity Roadmaps

Define Device Identity

Roa…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search