Senior Trust Assurance Specialist

Job summary

We are seeking a Senior Trust Assurance Specialist to join the Trust Office team at DigiCert. This role is responsible for leading complex compliance and assurance activities, providing subject matter expertise across regulatory frameworks, and influencing stakeholders to ensure strong compliance outcomes.

The successful candidate will have 6–7 years of experience in compliance, risk management, or audit, with deep knowledge of relevant cybersecurity and regulatory frameworks. This individual will operate with a high degree of autonomy, acting as a key liaison for audits and regulatory matters. This role reports to the Head of Compliance and works closely with cross-functional teams across Security, IT, Legal, and Operations.

What you will do

• Audit & Assurance Leadership
  • Lead external, and customer audit engagements (e.g., SOC 2, WebTrust), including planning, execution, and stakeholder coordination
  • Act as a primary point of contact for auditors, ensuring effective communication and successful audit outcomes
  • Oversee audit evidence preparation, walkthroughs, and issue resolution
  • Ensure timely and effective remediation of audit findings

• Regulatory Compliance & Advisory
  • Interpret and apply regulatory and industry standards (e.g., WebTrust for CAs, ISO 27001, NIST, SOC 2) across the organization
  • Ensure alignment between regulatory requirements, internal policies, and control design across the organization
  • Stay informed of emerging regulatory changes and assess their impact on DigiCert

• Control Design & Oversight
  • Lead the design, evaluation, and enhancement of controls to ensure effectiveness and alignment with regulatory requirements
  • Provide guidance on complex control issues and oversee control testing approaches
  • Identify systemic control gaps and drive remediation strategies

• Risk & Compliance Integration
  • Provide input into risk assessments and ensure alignment between compliance and risk management activities
  • Support integration of compliance requirements into broader risk frameworks

• Stakeholder Leadership
  • Build and maintain strong relationships with senior stakeholders across Security, IT, Legal, HR, and Operations
  • Influence decision-making to ensure compliance objectives are met without unnecessary friction
  • Provide mentorship and guidance to Analysts and Specialists

• Continuous Improvement
  • Identify and drive improvements in compliance processes, tools, and reporting
  • Contribute to the maturity and scalability of DigiCert’s compliance program

What you will have

• Bachelor’s degree in Law, Compliance, Information Security, Computer Science, or a related field
• 3+ years of experience in compliance, risk management, audit, or related roles
• Strong experience leading audits and working with frameworks such as IRAP, GateKeeper, SOC 2, ISO 27001, WebTrust, and NIST
• Strong understanding of control design, evaluation, and regulatory interpretation
• Experience engaging with external auditors and regulatory bodies
• Strong analytical and problem-solving capabilities
• Excellent written and verbal communication skills
• Ability to influence and challenge stakeholders constructively
• High degree of ownership and accountability

Nice to have

• Experience in PKI, digital certificates, or cryptographic security environments
• Certifications such as CISSP, CISM, CISA, or CRISC

Benefits

• Generous time off policies
• Top shelf benefits
• Education, wellness and lifestyle support

#LI-SD1