Clash
of Jobs
Browse All Jobs
Job Description
Verisign is seeking a Graduate Intern to help enable the security, stability, and resiliency of the internet. Verisign is a trusted provider of internet infrastructure services and delivers unmatched performance in domain name system (DNS) services. The intern will contribute to building a stronger, more secure internet within a dynamic and flexible work environment.
The intern will work on securing the software delivery chain with binary-provenance attestations. This involves leveraging attestations to verify and enforce governance criteria for binary artifacts before they execute on Verisign's platform. The project aims to improve build pipelines, signature and key management processes, and ease-of-adoption by application teams. The intern will also work on policy frameworks such as OPA Rego or Kyverno to enforce governance criteria on software running on Verisign platforms.
Role Involves:
- Reviewing mechanisms to record and sign attestations.
- Implementing a mechanism for recording and signing provenance and SBOM attestations.
- Meeting SLSA level 2 or above criteria.
- Validating that attestations document build steps and static checks.
- Implementing policy enforcement on attestations.
- Ensuring the process works for both internal and external software.
Requirements:
- Familiarity with build platforms like GitHub Actions or Jenkins.
- Knowledge of SLSA and in-toto.io formats.
- Understanding of CIS Controls.
- Experience with OPA Gatekeeper, Rego, or Kyverno.
- Knowledge of Kubernetes.
Verisign offers:
- A dynamic and flexible work environment.
- The ability to grow your career.
