Senior Trust Operations Security Engineer

Who we are

DigiCert is a global leader in intelligent trust, helping organizations protect the digital interactions people rely on every day. From websites and cloud services to connected devices and critical systems, we make sure digital experiences are secure, private, and authentic.

Our AI-powered DigiCert ONE platform brings together certificates, DNS, and lifecycle management to help organizations stay ahead of risk as technology and threats evolve. Trusted by more than 100,000 organizationsincluding 90% of the Fortune 500DigiCert helps businesses operate with confidence today while preparing for what's next, including a quantum-safe future.

Job summary

We are seeking an experienced Senior Trust Operations Security Engineer with a strong background in Python development, cloud security, automation, and security operations. In this senior role, you will own the design, development, and optimization of critical security systems, including automation workflows, dashboards, APIs, and internal applications. You will drive operational visibility, threat detection, and response capabilities across the organization, integrating advanced threat intelligence and endpoint security tools to strengthen the enterprise security posture.

The ideal candidate will be a strategic and hands-on technical leader, capable of working across teams to build scalable, resilient, and automated solutions for security analytics, incident response, and cloud security monitoring. You will leverage modern cloud technologies, and security frameworks to proactively improve detection, response, and compliance and shaping the security tooling roadmap.

What you will do

• Develop, maintain, and optimize Python scripts and automation tools to improve security operations and workflow efficiency.
• Manage and maintain internal security applications built in Flask, ensuring reliability, performance, and integration with other security tools.
• Build advanced Splunk queries (SPL), dashboards, and alerts to extract actionable insights and support incident investigations.
• Architect and integrate threat intelligence feeds and endpoint security tools (CrowdStrike, RecordedFuture) into automated workflows.
• Support AWS security operations, including implementing security best practices, monitoring controls, and automating responses.
• Design, develop, and troubleshoot RESTful APIs to support internal security tools, automation workflows, and integrations across systems.
• Lead initiatives to automate critical processes using Python and SOAR platforms (preferred), enhancing detection, response, and reporting capabilities.
• Develop and maintain dashboards, reports, and alerts to provide real-time visibility into security events and operational metrics.
• Collaborate with cross-functional teams to ensure security tools, cloud platforms, and automation solutions are aligned with enterprise objectives.
• Research, evaluate, and integrate emerging security technologies and cloud posture tools such as Wiz CNAPP (preferred).
• Perform advanced log analysis, data correlation, and anomaly detection to support threat hunting and security investigations.

What you will have

• 5+ years of experience in security operations, cloud security, or security analytics.
• Strong proficiency in Python for automation and tool development.
• Hands-on experience with AWS security and cloud automation.
• Experience with endpoint protection tools, preferably CrowdStrike.
• Familiarity with threat intelligence platforms, preferably RecordedFuture.
• Advanced knowledge of Splunk: SPL queries, dashboards, and visualizations.
• Experience with databases and writing SQL queries.
• Excellent problem-solving, written, and verbal communication skills.
• Experience integrating security tools and automating workflows.
• CISSP certification or willingness/ability to obtain it if not already held.

Nice to have

• Experience with SOAR platforms and security automation workflows.
• Exposure to cloud security posture management tools (e.g., Wiz CNAPP).
• Master's degree in a technical discipline.
• Experience with SASE products, WAFs, and cloud-based identity providers (SSO, SAML).
• Familiarity with security, compliance, and privacy frameworks (ISO 27001, NIST, GDPR, SOC2, WebTrust).
• Experience designing, building, and implementing enterprise-class security systems.

Benefits

• Generous time off policies
• Top shelf benefits
• Education, wellness and lifestyle support

__PRESENT