About this Senior Software Engineer - Fullstack role at DigiCert
Who we are
DigiCert is a global leader in intelligent trust. We protect the digital world by ensuring the security, privacy, and authenticity of every interaction. Our AI-powered DigiCert ONE platform unifies PKI, DNS, and certificate lifecycle management, to secure infrastructure, software, devices, messages, AI content and agents. Learn why more than 100,000 organizations, including 90% of the Fortune 500, choose DigiCert to stop today’s threats and prepare for a quantum-safe future at www.digicert.com
Job summary
Senior Software Engineer (5+ years) with strong full-stack expertise in Java backend development, React frontend engineering, and modern DevOps practices. Deep knowledge of identity and access management (IAM) standards including OAuth 2.0, SAML, OIDC, and hands-on experience integrating with Okta and other identity providers. Experienced in building secure, scalable, cloud-native applications and leading end-to-end delivery across the full software development lifecycle in a security-domain context.
What you will do
- Design and build scalable, secure Java backend services and RESTful APIs, taking full ownership from design to production
- Build and maintain responsive, high-performance React frontends with a focus on UX, accessibility, and component reusability
- Implement and maintain identity and access management flows using OAuth 2.0, OIDC, and SAML — integrating with Okta and enterprise identity providers
- Architect and enforce security best practices across the stack — secure token handling, session management, role-based access control, and API security
- Own CI/CD pipelines end-to-end — from code commit to production deployment — using tools such as Jenkins, GitHub Actions, or ArgoCD
- Manage containerized workloads on Kubernetes; participate in infrastructure-as-code practices using Terraform or Helm
- Partner with Product and Design to translate requirements into robust, testable user stories and technical specifications
- Monitor system health and security posture using observability tools (New Relic, Splunk, Datadog); respond to and remediate incidents
- Drive engineering quality through code reviews, unit and integration testing, and continuous improvement of development standards
- Maintain clear technical documentation covering architecture decisions, security design, API contracts, and operational runbooks
What you will have
- 5+ years of hands-on Java development experience with Spring Boot, RESTful API design, and microservices architecture
- Proficiency in React including hooks, state management (Redux/Zustand), component libraries, and frontend testing (Jest, React Testing Library)
- Deep understanding of OAuth 2.0, OIDC, and SAML protocols; hands-on experience with Okta, Azure AD, or similar identity providers
- Strong working knowledge of CI/CD pipelines, container orchestration with Kubernetes, and infrastructure-as-code (Terraform/Helm)
- Solid grounding in software engineering fundamentals — data structures, algorithms, OOP, and design patterns — applied to building maintainable, production-grade code
- Experience securing web applications and APIs — including input validation, encryption, RBAC, and OWASP Top 10 awareness
- Experience with relational and NoSQL databases (PostgreSQL, MySQL, Redis, or similar); ability to design efficient schemas and write optimized queries
- Familiarity with cloud platforms (AWS, GCP, or Azure) and cloud-native services (managed databases, queues, secret stores, load balancers)
- Strong problem-solving skills with a security mindset — able to identify vulnerabilities, assess risk, and drive secure design decisions
- Excellent communication and collaboration skills; comfortable working across frontend, backend, security, and DevOps teams to deliver end-to-end features
- Experience in a PKI, certificate management, or digital identity security domain is a strong plus
Nice to have
- Prior experience in PKI, certificate lifecycle management, or digital trust platforms
- Event‑driven architecture, Kafka, or event streaming patterns relevant to real-time security event processing
- Experience with advanced deployment patterns: blue/green, canary, or feature flags in a high-availability environment
- Open-source contributions, security research, or technical blogging on identity and access management topics
Benefits
- Generous time off policies
- Top shelf benefits
- Education, wellness and lifestyle support
To protect candidate information and maintain a secure hiring process, all applications must be submitted through our careers portal. Resumes or CVs sent directly via email will not be reviewed or considered.
#LI-SD1