Job Description
A Senior Application Security Engineer responsible for assessing, validating, and enhancing the security of Celonis's applications and services through threat modeling, security reviews, and automation, while leading security projects and mentoring team members.
Key Responsibilities
- Assess and validate the security of applications, services, and websites to ensure high security standards
- Conduct threat modeling, secure code reviews, and security assessments to identify vulnerabilities
- Perform security architecture reviews of application stacks, including cloud and emerging technologies
- Review source code for security issues and develop security test cases
- Provide risk assessments and remediation guidelines to developers and business owners
- Research security best practices, trends, threats, and vulnerabilities to inform security strategies
- Perform security reviews of new features, including vulnerability identification and security posture verification
- Partner with engineering teams to integrate security controls into CI/CD pipelines
- Develop security baselines for applications, containers, and cloud platforms and embed them into deployment processes
- Implement security architecture, controls, and methods to meet compliance and audit requirements
- Lead complex security projects from planning to execution
- Act as an internal expert on secure software development practices and lead security awareness initiatives
Requirements
- Minimum of 5 years of previous experience in information security.
- At least 3 years of previous experience working within software development.
- A bachelor’s degree in Computer Science, Information Security, Cyber Security, or an equivalent field.
- Proven track record of performing secure design reviews and threat modeling on complex systems.
- Comprehensive knowledge of fundamental application security principles, secure coding practices, and common web application vulnerabilities, including those listed in OWASP Top 10.
- Ability to conduct threat modeling, secure code reviews, and security assessments across web native applications and infrastructure.
- Experience in reviewing source code for potential security issues and writing security test cases to check for vulnerabilities or missing security controls.
- Ability to provide specific risk assessment and remediation guidelines for developers and business owners.
- Experience in researching the latest security best practices, trends, threats, vulnerabilities, and technology frameworks.
- Experience performing in-depth security reviews of new features, including identifying security vulnerabilities such as OWASP Top Ten, and verifying security posture through source-assisted security assessments and penetration testing using manual and automated techniques with tools such as Burp Suite and Semgrep.
- Ability to partner with engineering and operation teams to integrate mitigation controls into continuous integration, delivery, and deployment processes.
- Experience in developing security baseline for applications, containers, cloud, and orchestration platforms, and integrating it into the CI/CD pipeline.
- Knowledge of security architecture, methods, and controls required to meet security, compliance, and audit requirements such as NIST controls and SOC2.
- Experience leading complex security projects from initial planning through execution and completion.
- Ability to act as an internal advocate and subject matter expert on secure software development practices.
- Experience leading secure development awareness communications and training initiatives.
Benefits & Perks
Base salary range: $161,000 - $218,000 USD
Total compensation package including bonus, commission, equity, benefits, health, dental, life, 401k, and paid time off
Hybrid working options
Generous paid time off (PTO)
Company equity (RSUs)
Extensive parental leave
Dedicated volunteer days
Gym subsidies
Counseling and well-being programs
Internal mobility and mentorship opportunities
Career development and learning programs
Ready to Apply?
Join Celonis and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More jobs at Celonis
Global People Business Partner
Celonis
NEW
Raleigh
Full Time
14h
Global People Business Partner
Celonis
NEW
New York
Full Time
14h
$145k-165k
Senior Management Technology Consultant
Celonis
NEW
Munich
Full Time
14h
More jobs in New York, New York
Project Analyst
Scale Microgrids
New York
Contract
Nov 14
Transaction Advisory Services Senior Manager
Aprio
New York
Full Time
Dec 27
Senior Tax Associate - Technology Industry
Aprio
New York
Full Time
Oct 30