Example Projects & Interview Topics Please choose 1 of the following topics and be prepared to discuss/answer questions during the interview process: These topics represent example projects that you might work on in this role. Please be ready to discuss one of these technical topics during the interview. To avoid any confusion: you do not need to complete an example project for the interview process, theyre listed to give you an idea of what will be involved in the job day-to-day. During the interview process the only expectation is to discuss one of the technical topics and how you would approach projects if you take on the job. 1) Certificate-Based Authentication Using an x.509/PKI certificate on the users device to authenticate them into a system, either on its own or combined with other authentication methods for added security. Depending on the scenario the PKI certificates could be issued by a third-party globally trusted certificate authority or by a private certificate authority run by the client for their network. Example Project: Work with others on the marketing team to create educational and marketing materials (targeted towards IT departments) that highlight the benefits of certificate-based authentication and provide technical details on implementing it. Example Questions: 1. What are the benefits of certificate-based authentication? What are examples of situations where you would or wouldnt want to use it? 2. What are some commonly used platforms/software/systems that support certificate-based authentication? 3. What challenges might IT departments run into while deploying certificate-based authentication, and how could we help them overcome them? 4. Lets say a customer wanted to implement certificate-based authentication for a web application intended to be accessed only by company employees. The web application was custom-developed by the companys in-house dev team and is going to be hosted on a dedicated cloud-based web-server (they are flexible on whether its a Linux or Windows server). What are the technical options/steps for implementing certificate-based authentication? 5. How could we make certificate-based authentication easier for companies to implement? Are there any SDKs/plugins/connectors we could develop to make it easier to implement certificate-based authentication in one or more commonly used systems/environments? 2) DNS Market Analysis DNS hosting provider refers to nameservers used to host authoritative DNS records for a public domain name (not DNS servers queried by clients when resolving domain names). https://dnsmadeeasy.com/ is our sister company. Note: most of our customers currently use free DNS hosting providers/nameservers (for example, whats included with their domain registration)it does the job and the price is right. Premium DNS tends to be used by customers who have more advanced needs. Premium DNS offers additional features such as DNS failover, geo-based DNS routing, API access, better performance, and custom nameservers. Example Project: Analyze the Authoritative DNS / DNS Hosting Provider market to better understand the needs of technical users/buyers and how our marketing efforts could better speak to those needs. Example Questions: 1. What are some specific use cases/technical requirements that might require the additional features premium DNS offers? 2. Many real-world use cases/requirements that require premium DNS features need multi-faceted solutions (DNS is just one component needed). If we created end-to-end technical solution guides for these use cases, what other parts would be needed to give a complete solution to meet the goal? 3. How could we identify customers who are likely to have needs or use cases that require premium DNS? 4. Any ideas for integrations/connectors we could build to make DNS management tasks simpler for our customers? 5. What are some authoritative DNS management best practices we should recommend to our customers? 3) HTTP/3 HTTP/3 is the latest version of the HTTP protocol, offering several benefits over HTTP/2 and HTTP/1. HTTP/2 and HTTP/3 both require an SSL/TLS certificate to work. Example Project: Work with content writing team to create a series of blog posts on HTTP/3technical comparisons to previous versions, technical guides for implementation, and best practices/recommendations. Example Questions: 1. What are the key differences between HTTP/3 vs. HTTP/2 and HTTP/1? 2. What steps would an admin need to take to implement HTTP/3 on a website? 3. What happens for website users whose browser doesnt support HTTP/3? 4. If we wanted to create benchmarking tests comparing the performance of HTTP/3 vs HTTP/2 and HTTP/1, how could we do that? 5. What additional guides/information/resources about HTTP/3 might be useful to tech admins?

4) Code Signing for Developers and DevOps Teams Code signing is used in a variety of ways to ensure the authenticity of code, containers, or executables. Its especially popular with Windows software developers to avoid Unknown Publisher warnings or SmartScreen warnings being triggered by Windows. Example Project: Work with content writing team to create a series of how to articles/guides showing software developers and/or devops professionals how to complete code signing within a specific platform theyre working within (for example: Visual Studio, Github Actions, Azure DevOps, etc.) Example Questions: 1. How could we create realistic test scenarios/environments to use when creating documentation/how-to guides for our customers? 2. When signing code/executables in GitHub Actions, how/where should the code signing certificate and private key be stored? 3. If a customer was using Visual Studio to sign an executable, what are the options for where their certificate and key would be stored? What are the pros and cons? 4. What are some additional platforms/scenarios/environments that we might want to provide documentation for? 5. How could the development team verify signatures on software files (manually or automatically)? 5) SSL/TLS Server Configuration Web servers can be configured to enable/disable different SSL/TLS protocols and cipher suites (encryption algorithms); its important for server admins to disable insecure options while ensuring there are options for clients that may not support the most recent options. Example Project: Work with content team to create guides with recommended settings and how-to instructions for server admins to implement the settings in popular web servers. Example Questions: 1. How are SSL/TLS server settings managed in IIS, Nginx, and/or Apache? 2. Which protocols and cipher suites should always be disabled for security reasons? 3. What are some tools we can recommend customers use for testing their server settings? 4. If a customer had many servers they wanted to check or monitor SSL/TLS protocol versions for, what options could they use for automating/checking in bulk? 5. What are the pros and cons of enabling HTTP Strict Transport Security? 6) S/MIME Certificate Automation via Active Directory Some companies need an S/MIME certificate (used for signing emails, encrypting emails, and/or certificate-based authentication) deployed and updated on each employee devices. Using a PKI platform with an ActiveDirectory integration is one easy way to accomplish this. Example Project: Create a comparison of the technical capabilities of the main S/MIME automation products we offer (DigiCert Enterprise PKI Manager, Sectigo Certificate Manager, KeyTalk). Example Questions: 1. How could we setup a realistic test environment(s) to install/test/analyze/compare our automated S/MIME solutions? 2. What are some specific tasks/requirements we could test the platforms on their ability to meet? 3. What are some different ActiveDirectory setups/environments might our customers have that wed need to consider and/or create a test environment to replicate? 4. What potential edge cases might organizations have that could cause problems?