Who we are
DigiCert is a global leader in intelligent trust. We protect the digital world by ensuring the security, privacy, and authenticity of every interaction. Our AI-powered DigiCert ONE platform unifies PKI, DNS, and certificate lifecycle management, to secure infrastructure, software, devices, messages, AI content and agents. Learn why more than 100,000 organizations, including 90% of the Fortune 500, choose DigiCert to stop today’s threats and prepare for a quantum-safe future at www.digicert.com
Job summary
Senior Software Engineer (5+ years) with strong full-stack expertise in Java backend development, React frontend engineering, and modern DevOps practices. Deep knowledge of identity and access management (IAM) standards including OAuth 2.0, SAML, OIDC, and hands-on experience integrating with Okta and other identity providers. Experienced in building secure, scalable, cloud-native applications and leading end-to-end delivery across the full software development lifecycle in a security-domain context.
What you will do
- Design and build scalable, secure Java backend services and RESTful APIs, taking full ownership from design to production
- Build and maintain responsive, high-performance React frontends with a focus on UX, accessibility, and component reusability
- Implement and maintain identity and access management flows using OAuth 2.0, OIDC, and SAML — integrating with Okta and enterprise identity providers
- Architect and enforce security best practices across the stack — secure token handling, session management, role-based access control, and API security
- Own CI/CD pipelines end-to-end — from code commit to production deployment — using tools such as Jenkins, GitHub Actions, or ArgoCD
- Manage containerized workloads on Kubernetes; participate in infrastructure-as-code practices using Terraform or Helm
- Partner with Product and Design to translate requirements into robust, testable user stories and technical specifications
- Monitor system health and security posture using observability tools (New Relic, Splunk, Datadog); respond to and remediate incidents
- Drive engineering quality through code reviews, unit and integration testing, and continuous improvement of development standards
- Maintain clear technical documentation covering architecture decisions, security design, API contracts, and operational runbooks
What you will have
- 5+ years of hands-on Java development experience with Spring Boot, RESTful API design, and microservices architecture
- Proficiency in React including hooks, state management (Redux/Zustand), component libraries, and frontend testing (Jest, React Testing Library)
- Deep understanding of OAuth 2.0, OIDC, and SAML protocols; hands-on experience with Okta, Azure AD, or similar identity providers
- Strong working knowledge of CI/CD pipelines, container orchestration with Kubernetes, and infrastructure-as-code (Terraform/Helm)
- Solid grounding in software engineering fundamentals — data structures, algorithms, OOP, and design patterns — applied to building maintainable, production-grade code
- Experience securing web applications and APIs — including input validation, encryption, RBAC, and OWASP Top 10 awareness
- Experience with relational and NoSQL databases (PostgreSQL, MySQL, Redis, or similar); ability to design efficient schemas and write optimized queries
- Familiarity with cloud platforms (AWS, GCP, or Azure) and cloud-native services (managed databases, queues, secret stores, load balancers)
- Strong problem-solving skills with a security mindset — able to identify vulnerabilities, assess risk, and drive secure design decisions
- Excellent communication and collaboration skills; comfortable working across frontend, backend, security, and DevOps teams to deliver end-to-end features
- Experience in a PKI, certificate management, or digital identity security domain is a strong plus
Nice to have
- Prior experience in PKI, certificate lifecycle management, or digital trust platforms
- Event‑driven architecture, Kafka, or event streaming patterns relevant to real-time security event processing
- Experience with advanced deployment patterns: blue/green, canary, or feature flags in a high-availability environment
- Open-source contributions, security research, or technical blogging on identity and access management topics
Benefits
- Generous time off policies
- Top shelf benefits
- Education, wellness and lifestyle support
To protect candidate information and maintain a secure hiring process, all applications must be submitted through our careers portal. Resumes or CVs sent directly via email will not be reviewed or considered.
#LI-SD1
Skills Required
- 5+ years of hands-on Java development experience with Spring Boot, RESTful API design, and microservices architecture
- Proficiency in React including hooks, state management (Redux/Zustand), component libraries, and frontend testing (Jest, React Testing Library)
- Deep understanding of OAuth 2.0, OIDC, and SAML protocols; hands-on experience with Okta, Azure AD, or similar identity providers
- Strong working knowledge of CI/CD pipelines (Jenkins, GitHub Actions, ArgoCD) and end-to-end deployment ownership
- Experience managing containerized workloads on Kubernetes and infrastructure-as-code (Terraform or Helm)
- Solid grounding in software engineering fundamentals: data structures, algorithms, OOP, and design patterns
- Experience securing web applications and APIs including input validation, encryption, RBAC, and OWASP Top 10 awareness
- Experience with relational and NoSQL databases (PostgreSQL, MySQL, Redis or similar) and writing optimized queries
- Familiarity with cloud platforms (AWS, GCP, or Azure) and cloud-native managed services
- Strong communication and collaboration skills; work across frontend, backend, security, and DevOps teams
- Experience in a PKI, certificate management, or digital identity security domain
- Event-driven architecture experience, Kafka, or event streaming patterns
- Experience with advanced deployment patterns (blue/green, canary) and feature flagging
- Open-source contributions, security research, or technical writing on IAM topics
DigiCert Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about DigiCert and has not been reviewed or approved by DigiCert.
-
Leave & Time Off Breadth — Vacation/PTO and sick leave are characterized as strong, and some accounts mention a sabbatical program.
-
Retirement Support — The package includes a 401(k) with company matching, with recent confirmations of this benefit.
-
Flexible Benefits — Hybrid and work-from-home options are referenced consistently, indicating practical flexibility in how and where work is done.
DigiCert Insights
What We Do
DigiCert is the digital trust provider of choice for leading companies around the globe, enabling individuals, businesses, governments, and consortia to engage online with confidence, knowing their digital footprint is secure.








