Apply Now
Application opens on company website
Job Description
The Senior Cloud Security Engineer is a hands-on role responsible for designing, implementing, and maintaining security measures across Celonis's multi-cloud infrastructure, including AWS, Azure, and GCP, with a focus on cloud security best practices, container and Kubernetes security, automation, and vulnerability management to protect a large-scale SaaS platform.
Key Responsibilities
- Design and implement security measures for cloud infrastructure across AWS, Azure, and GCP
- Harden cloud infrastructure by configuring network controls, encryption, and logging
- Secure containerized applications and Kubernetes clusters, including image scanning and policy enforcement
- Develop and maintain automation scripts and Infrastructure-as-Code for security deployment and compliance
- Enhance cloud security monitoring through tuning and extending CSPM tools and native monitoring services
- Manage and improve cloud Identity and Access Management (IAM) configurations and access controls
- Conduct vulnerability scans on cloud assets and container images, and remediate identified issues
- Collaborate with development and operations teams to advise on secure architecture and practices
- Identify and address security misconfigurations and weaknesses in cloud environments
- Respond to security alerts and incidents related to cloud infrastructure
Requirements
- Proven Cloud Security Expertise with 5 years of hands-on experience in security engineering focusing on cloud environments including AWS, Azure, and GCP, with deep understanding of cloud architecture and services, and proven experience implementing security controls in a production cloud environment.
- Strong experience securing containerized applications and Kubernetes clusters, including familiarity with tools and practices for container security such as image vulnerability scanning, runtime security, Kubernetes network policies, and service mesh security.
- Proficiency in Infrastructure-as-Code and scripting, with demonstrated ability to use Terraform, CloudFormation, or similar tools to deploy secure configurations, and to write scripts in Python, Go, or Bash to automate security workflows.
- Hands-on experience with Cloud Security Posture Management (CSPM) solutions or implementing automated checks for cloud compliance, with the ability to identify misconfigurations and weaknesses in cloud setups such as S3 bucket policies and public exposure of resources, and remediate them.
- In-depth understanding of cloud Identity and Access Management (IAM) and access control mechanisms, including experience designing role-based access schemes, managing federated identities such as SAML and OIDC, and implementing principles of least privilege across multiple cloud accounts and services.
- Experience with vulnerability scanning tools such as Tenable, Nessus, or Qualys, including interpreting their output, and knowledge of common cloud threats and vulnerabilities such as OWASP Cloud Top 10 and CIS benchmarks, with the ability to remediate identified issues.
- A track record of securing real cloud deployments and solving security incidents or challenges in production environments, demonstrating hands-on problem-solving skills and tangible security outcomes.
- Excellent communication skills to articulate complex security issues to both technical and non-technical colleagues, including experience writing security documentation or standard operating procedures, and fostering a culture of security awareness within teams.
Benefits & Perks
generous PTO
hybrid working options
company equity RSUs
comprehensive benefits
extensive parental leave
dedicated volunteer days
access to resources such as gym subsidies, counseling, and well-being programs
benefit from clear career paths, internal mobility, a dedicated learning program, and mentorship opportunities
connect and support through dedicated inclusion and belonging programs
opportunity to work with leading process mining technology
international team collaboration
contribute ideas in an open, autonomous environment
Ready to Apply?
Join Celonis and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More jobs at Celonis
Global People Business Partner
Celonis
NEW
Raleigh
Full Time
2d
Global People Business Partner
Celonis
NEW
New York
Full Time
2d
$145k-165k
Senior Management Technology Consultant
Celonis
NEW
Munich
Full Time
2d
More jobs in Madrid, Spain
Account Management Internship
LevelTen Energy
Madrid
Internship
Nov 22
Data Researcher - Madrid
Unison
Madrid
TEMPORARY
Nov 3
Application Engineer
Rondo Energy
Madrid
HYBRID
Nov 4