Job Description
The Senior Security Automation Engineer at Celonis is responsible for integrating automated security practices into the software development lifecycle, including building security tools, automating security scans, and ensuring secure infrastructure and supply chain practices within a DevSecOps environment.
Key Responsibilities
- Design, build, and enhance security components for Celonis applications and platforms
- Integrate automated security scans (SAST, DAST, SCA, container scanning) into CI/CD pipelines
- Implement deployment gates based on security findings
- Develop and maintain security tooling and custom integrations using scripting languages
- Automate security checks for Infrastructure as Code deployments and cloud resources
- Implement and maintain Software Bill of Materials (SBOMs) and build signing processes
- Collaborate with cloud security teams to address vulnerabilities and provide secure coding guidance
- Research emerging threats and DevSecOps tools to improve security automation
Requirements
- Minimum of 5 years of experience in security engineering or DevSecOps, emphasizing security automation.
- Proven expertise in integrating SAST, DAST, and SCA security testing tools into CI/CD pipelines.
- Strong proficiency in scripting languages such as Python, Go, or similar.
- Experience using Git and following version control best practices.
- Hands-on experience with container technologies including Docker and Kubernetes, and container security scanning tools such as Trivy and Aqua.
- Proficiency with Infrastructure as Code frameworks such as Terraform and CloudFormation.
- Solid understanding of OWASP Top 10 vulnerabilities and best practices in application security.
- Experience with container security scanning tools like Trivy and Aqua.
- Experience with Infrastructure as Code security, automating baseline security checks using tools like Checkov and CIS benchmarks.
- Experience with Supply Chain Security, including implementing and maintaining Software Bill of Materials (SBOMs) using tools such as Syft or CycloneDX, and establishing build signing and artifact verification using Cosign or GPG.
Benefits & Perks
generous PTO
hybrid working options
company equity RSUs
comprehensive benefits
extensive parental leave
dedicated volunteer days
access to resources such as gym subsidies, counseling, and well-being programs
clear career paths
internal mobility
dedicated learning program
mentorship opportunities
Ready to Apply?
Join Celonis and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More at Celonis
More jobs at Celonis
Global People Business Partner
Celonis
NEW
Raleigh
Full Time
14h
Global People Business Partner
Celonis
NEW
New York
Full Time
14h
$145k-165k
Senior Management Technology Consultant
Celonis
NEW
Munich
Full Time
14h
More jobs in Munich, Germany
Operations Analytics Engineer - m/w/d
Octopus Energy
Munich
Full Time
Dec 17
Territory Systems Engineer, Commercial, Germany
Pure Storage
Munich
Full Time
Dec 18
Partner Technical Manager
Pure Storage
Munich
Full Time
Dec 20