We're Celonis, the global leader in Process Mining technology and one of the world's fastest-growing SaaS firms. We believe there is a massive opportunity to unlock productivity by placing data and intelligence at the core of business processes - and for that, we need you to join us.
The Team:
Within our InfoSec organization, Our global security engineering team is responsible for designing, building, and enhancing the underlying security components that help with securing the Celonis Application and Platforms stacks. We think about both offensively and defensively. We continuously monitor our global security posture and are always adapting to the ever-changing threat landscape. The security engineering team is looking for talented subject matter experts in application, platform and offensive security.
The Role:
Provide strategic leadership and hands-on expertise to secure Celonis’ multi-cloud infrastructure (AWS, Azure, GCP). This Manager of Cloud Security will drive the cloud security strategy, ensuring robust protection of our SaaS platform. You will lead a team of security engineers, setting best practices and fostering a culture of security excellence. The role balances high-level strategy with deep technical involvement in day-to-day cloud security operations.
The work you’ll do:
- Leadership & Strategy: Lead, mentor, and develop a team of cloud security engineers. Implement the cloud security roadmap and ensure alignment with Celonis’ business goals and risk posture.
- Cloud Security Controls: Design and implement security controls across AWS, Azure, and GCP environments. Continuously enhance our cloud security posture management (CSPM) program to identify and remediate risks in configurations and policies.
- Container & Kubernetes Security: Oversee security for containerized applications and Kubernetes clusters (EKS, AKS, GKE). Establish best practices for container image security, pod security policies, and cluster network segmentation to protect our microservices.
- Tools Integration: Integrate and manage advanced security tools into our infrastructure. This includes solutions like Teleport for secure access management and Tenable for vulnerability scanning and management. Ensure these tools are effectively used to protect cloud endpoints, and refine their configurations to fit Celonis’ environment.
- Cross-Team Collaboration: Work closely with security automation, enterprise security, and engineering teams to embed security into CI/CD pipelines and infrastructure provisioning. Champion a secure guardrails approach—automating security checks and educating teams to build secure systems from the ground up.
- Incident Response & Compliance: Collaborate with Security Operations to respond to cloud security incidents, performing root-cause analysis and implementing preventive measures. Ensure cloud architectures meet and industry benchmarks and participate in audits as needed.
The qualifications you need:
- Extensive Cloud Security Experience: Over 7 years of hands-on experience in information security, specializing in securing cloud infrastructure across AWS, Azure, and GCP. Demonstrated managerial experience (3-5 years) leading security teams, driving the implementation of best practices, and securing cloud services in production environments. Proven ability to manage complex security projects, mentor team members, and deliver scalable security solutions across multi-cloud platforms.
- Technical Expertise: Deep expertise in identity and access management (IAM), network security (VPCs, security groups, firewalls), and container security, including hands-on experience with Container Network Interfaces (CNI) such as Cilium. Extensive practical experience securing Kubernetes orchestrations and container ecosystems. Proficient with infrastructure-as-code tools (Terraform, CloudFormation) and automation/scripting (Python, Bash) to enforce scalable, automated security measures. Experienced in offensive cloud security assessments using tools such as ScoutSuite, Prowler, CloudSploit, Pacu, and similar cloud security auditing utilities, with the ability to proactively identify and remediate vulnerabilities.
- Leadership Skills: Demonstrated ability to lead and mentor security teams or projects. Strong project management and communication skills to articulate risks and influence technical and non-technical stakeholders.
- Security Best Practices: Up-to-date understanding of modern cloud security practices and frameworks (zero-trust networking, principle of least privilege, threat modeling for cloud). Experience implementing monitoring and alerting for cloud environments (CloudTrail, Azure Monitor, GCP Cloud Logging) and interpreting the results to improve security.
- Education & Certifications: Bachelor’s or Master’s in Computer Science, Cybersecurity, or related field is beneficial. Relevant certifications (CISSP, CISM, cloud security certs) are nice-to-have but not required – we value practical expertise and achievements more.
Preferred Qualifications:
- SaaS Environment Experience: Experience working in a high-growth SaaS company or similar cloud-driven environment. Understanding the security challenges of a multi-tenant cloud service and how to address them.
- Security Automation: Passion for automation and using code to solve security problems. Experience building security guardrails or self-service tools that enable developers to deploy securely (DevSecOps mindset).
- Tool Familiarity: Hands-on experience with tools such as Teleport (for secure access and identity management in infrastructure) and Tenable/Nessus (for vulnerability management) is highly desirable. Familiarity with other cloud security platforms or services (e.g., AWS Security Hub, Azure Security Center, GCP Security Command Center) is a plus.
- Continuous Improvement: Demonstrated habit of staying current with emerging cloud security trends and threats. Participation in security communities or contributions to open-source security projects show a plus.
Total compensation package will include base salary + bonus/commission + equity + benefits (health, dental, life, 401k, and paid time off). Please note that the base salary range is a guideline, and that the actual total compensation offer will be determined based on various factors, including, but not limited to, applicant's qualifications, skills, experiences, and location.
What Celonis Can Offer You:
- Pioneer Innovation: Work with the leading, award-winning process mining technology, shaping the future of business.
- Accelerate Your Growth: Benefit from clear career paths, internal mobility, a dedicated learning program, and mentorship opportunities.
- Receive Exceptional Benefits: Including generous PTO, hybrid working options, company equity (RSUs), comprehensive benefits, extensive parental leave, dedicated volunteer days, and much more.
- Prioritize Your Well-being: Access to resources such as gym subsidies, counseling, and well-being programs.
- Connect and Belong: Find community and support through dedicated inclusion and belonging programs.
- Make Meaningful Impact: Be part of a company driven by strong values that guide everything we do: Live for Customer Value, The Best Team Wins, We Own It, and Earth Is Our Future.
- Collaborate Globally: Join a dynamic, international team of talented individuals.
- Empowered Environment: Contribute your ideas in an open culture with autonomous teams.
About Us:
Celonis makes processes work for people, companies and the planet. The Celonis Process Intelligence Platform uses industry-leading process mining and AI technology and augments it with business context to give customers a living digital twin of their business operation. It’s system-agnostic and without bias, and provides everyone with a common language for understanding and improving businesses. Celonis enables its customers to continuously realize significant value across the top, bottom, and green line. Celonis is headquartered in Munich, Germany, and New York City, USA, with more than 20 offices worldwide.
Get familiar with the Celonis Process Intelligence Platform by watching this video.
Celonis Inclusion Statement:
At Celonis, we believe our people make us who we are and that “The Best Team Wins”. We know that the best teams are made up of people who bring different perspectives to the table. And when everyone feels included, able to speak up and knows their voice is heard - that's when creativity and innovation happen.
Your Privacy:
Any information you submit to Celonis as part of your application will be processed in accordance with Celonis’ Accessibility and Candidate Notices
By submitting this application, you confirm that you agree to the storing and processing of your personal data by Celonis as described in our Privacy Notice for the Application and Hiring Process.
Please be aware of common job offer scams, impersonators and frauds. Learn more here.
Top Skills
Similar Jobs at Celonis
What you need to know about the Boston Tech Scene
Key Facts About Boston Tech
- Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
- Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
- Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
- Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories
