Senior Security Engineer - Certificate Automation - Truist

Key Responsibilities

• Design, develop, and maintain automated workflows for certificate issuance, renewal, and revocation across hybrid cloud environments.
• Implement and manage Public Key Infrastructure (PKI) solutions, ensuring compliance with industry standards and internal security policies.
• Develop Python scripts and Ansible playbooks to integrate certificate management with CI/CD pipelines and configuration management tools.
• Collaborate with cross‑functional teams to embed security automation into cloud (AWS) and on‑premises infrastructures.
• Monitor, troubleshoot, and remediate certificate‑related incidents, providing root‑cause analysis and continuous improvement recommendations.

Requirements

• 5+ years of experience in security engineering or related roles, with a focus on certificate lifecycle automation.
• Proficiency in Python programming and Ansible automation.
• Strong understanding of PKI concepts, X.509 certificates, and related protocols (TLS/SSL, S/MIME).
• Hands‑on experience with AWS services (IAM, ACM, Secrets Manager) and integrating security controls in cloud environments.
• Demonstrated ability to work independently, solve complex problems, and communicate technical solutions to diverse stakeholders.