Apply Now
Application opens on company website
Job Description
The Senior Cloud Security Engineer is a hands-on role responsible for designing, implementing, and maintaining security measures across Celonis' multi-cloud infrastructure, including AWS, Azure, and GCP, with a focus on cloud security best practices, container and Kubernetes security, automation, and vulnerability management to protect a large-scale SaaS platform.
Key Responsibilities
- Design and implement security measures to protect cloud infrastructure across AWS, Azure, and GCP
- Harden cloud infrastructure by configuring network controls, encryption, and logging using native security features
- Secure containerized applications and Kubernetes clusters, including image scanning and policy enforcement
- Develop and maintain automation scripts and Infrastructure-as-Code for security deployment and compliance
- Enhance cloud security monitoring through tuning CSPM tools and investigating security alerts or incidents
- Manage and improve cloud Identity and Access Management (IAM) configurations and access controls
- Conduct vulnerability scans of cloud assets and container images, and remediate identified issues
- Collaborate with development, DevOps, and SRE teams to advise on secure architecture and practices
- Review new features and infrastructure for potential security risks before deployment
- Respond to and remediate security vulnerabilities and misconfigurations in cloud environments
Requirements
- Proven Cloud Security Expertise with 5 years of hands-on experience in security engineering focusing on cloud environments including AWS, Azure, and GCP, with deep understanding of cloud architecture and services, and proven experience implementing security controls in a production cloud environment.
- Strong experience securing containerized applications and Kubernetes clusters, including familiarity with tools and practices for container security such as container image vulnerability scanning, runtime security, Kubernetes network policies, and service mesh security.
- Proficiency in Infrastructure-as-Code and scripting, with demonstrated ability to use Terraform, CloudFormation, or similar tools to deploy secure configurations, and to write scripts in Python, Go, or Bash to automate security workflows.
- Hands-on experience with Cloud Security Posture Management (CSPM) solutions or implementing automated checks for cloud compliance, with the ability to identify misconfigurations and weaknesses in cloud setups such as S3 bucket policies and resource exposure, and remediate them.
- In-depth understanding of cloud Identity and Access Management (IAM) and access control mechanisms, including experience designing role-based access schemes, managing federated identities such as SAML and OIDC, and implementing principles of least privilege across multiple cloud accounts and services.
- Experience with vulnerability scanning tools such as Tenable, Nessus, or Qualys, including interpreting their output, and knowledge of common cloud threats and vulnerabilities such as OWASP Cloud Top 10 and CIS benchmarks, with a track record of remediating security issues in real cloud deployments.
- Ability to serve as a security subject matter expert for cloud projects, collaborating with developers, DevOps, and SRE teams to advise on secure architecture and coding practices, and contributing to threat modeling exercises and security reviews of new features and infrastructure before deployment.
- Formal degrees or certifications are less important than proven ability to do the job, with a focus on hands-on problem-solving skills and security outcomes.
Benefits & Perks
generous PTO
hybrid working options
company equity RSUs
comprehensive benefits
extensive parental leave
dedicated volunteer days
access to resources such as gym subsidies, counseling, and well-being programs
benefit from clear career paths, internal mobility, a dedicated learning program, and mentorship opportunities
connect and belong through inclusion and belonging programs
opportunity to work with industry-leading process mining technology
collaborate globally within a dynamic, international team
contribute ideas in an open culture with autonomous teams
Ready to Apply?
Join Celonis and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More jobs at Celonis
Global People Business Partner
Celonis
NEW
Raleigh
Full Time
13h
Global People Business Partner
Celonis
NEW
New York
Full Time
13h
$145k-165k
Senior Management Technology Consultant
Celonis
NEW
Munich
Full Time
13h
More jobs in Madrid, Spain
Account Management Internship
LevelTen Energy
Madrid
Internship
Nov 22
Data Researcher - Madrid
Unison
Madrid
TEMPORARY
Nov 3
Application Engineer
Rondo Energy
Madrid
HYBRID
Nov 4