Job Description
The Senior Security Automation Engineer at Celonis is responsible for integrating automated security practices into the software development lifecycle, including building security tools, automating security scans, and ensuring secure infrastructure and supply chain practices within a DevSecOps environment.
Key Responsibilities
- Design, build, and enhance security components for Celonis applications and platforms
- Integrate automated security scans (SAST, DAST, SCA, container scanning) into CI/CD pipelines
- Implement fail-fast deployment gates for high-severity security issues
- Develop and maintain security tooling and custom integrations using scripting languages
- Automate security checks for Infrastructure as Code deployments and cloud resources
- Implement and maintain Software Bill of Materials (SBOMs) and build signing processes
- Collaborate with Cloud Security Engineers to address vulnerabilities and provide security guidance
- Research emerging threats and DevSecOps tooling to improve security automation
Requirements
- Minimum of 5 years of experience in security engineering or DevSecOps, emphasizing security automation.
- Proven expertise in integrating SAST, DAST, and SCA tools into CI/CD pipelines.
- Strong proficiency in scripting languages such as Python, Go, or similar.
- Experience using Git and following version control best practices.
- Hands-on experience with container technologies including Docker and Kubernetes.
- Experience with container security scanning tools such as Trivy and Aqua.
- Proficiency with Infrastructure as Code frameworks like Terraform and CloudFormation.
- Knowledge of application security principles, including a solid understanding of OWASP Top 10 vulnerabilities and best practices.
- Experience with Infrastructure as Code security, automating baseline security checks using tools like Checkov and adhering to CIS benchmarks for cloud resources.
- Experience implementing and maintaining Software Bill of Materials (SBOMs) using tools such as Syft or CycloneDX.
- Experience with build signing and artifact verification using tools like Cosign and GPG to protect software supply chains.
Benefits & Perks
generous PTO
hybrid working options
company equity RSUs
comprehensive benefits
extensive parental leave
dedicated volunteer days
access to resources such as gym subsidies, counseling, and well-being programs
clear career paths
internal mobility
dedicated learning program
mentorship opportunities
Ready to Apply?
Join Celonis and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More jobs at Celonis
Global People Business Partner
Celonis
NEW
Raleigh
Full Time
2d
Global People Business Partner
Celonis
NEW
New York
Full Time
2d
$145k-165k
Senior Management Technology Consultant
Celonis
NEW
Munich
Full Time
2d
More jobs in Madrid, Spain
Account Management Internship
LevelTen Energy
Madrid
Internship
Nov 22
Data Researcher - Madrid
Unison
Madrid
TEMPORARY
Nov 3
Application Engineer
Rondo Energy
Madrid
HYBRID
Nov 4