DigiCert is building the trust layer for the agentic future. As a Backend Engineer, you will architect and build the core security and identity infrastructure that defines how AI agents are identified, authenticated, authorized, and governed at scale.

What You'll Do

Design and implement distributed identity and authorization systems for autonomous AI agents.
Define Zero Trust principles for agent-to-agent and agent-to-system communication.
Architect cryptographic identity, verifiable credentials, and secure delegation models.
Design and ship production-grade, multi-tenant SaaS services.
Build containerized microservices (Kubernetes-based) with strong observability, scalability, and resilience.
Establish secure service-to-service communication patterns using modern cloud-native best practices.
Build sophisticated multi-agent workflows to stress-test identity boundaries and governance models.
Create adversarial test harnesses to simulate prompt injection, privilege escalation, data exfiltration, and confused deputy attacks.
Ensure the platform is resilient against real-world enterprise attack scenarios.
Create developer-facing SDKs and APIs that embed secure identity primitives into AI workloads.
Ensure clean abstractions and seamless integration into enterprise systems.
Architect how agents interact securely with external systems via MCP or custom tool protocols.
Ensure every tool invocation is authenticated, authorized, and fully auditable.
Define policy enforcement layers for tool execution and resource access.
Own architectural direction and long-term technical roadmap.
Establish engineering standards for security, reliability, and performance.
Partner with infrastructure, product, and security teams to align on scalable execution.
Mentor engineers and raise the technical bar across the organization.

What We're Looking For

12+ years of professional software engineering experience.
Proven track record building and scaling cloud-native SaaS platforms.
Experience designing distributed systems that operate at enterprise scale.
Demonstrated ownership of zero-to-one or early-stage platform architecture.
Deep experience with Kubernetes, containerization, and microservices.
Strong background in AWS, Azure, or GCP (production environments).
Experience building secure multi-tenant systems.
Familiarity with service meshes, API gateways, and identity federation (OIDC/OAuth2).
Strong understanding of Zero Trust architectures.
Experience designing authentication, authorization (RBAC/ABAC), and policy-driven systems.
Familiarity with cryptographic primitives and secure token systems.
Understanding of common security threats in distributed systems.