Senior Information Security Engineer - Application Security

Camunda is the enterprise platform for agentic orchestration enabling organizations to coordinate AI agents people and systems across complex end-to-end business processes.

With built-in governance auditability and human oversight Camunda gives enterprises the control they need to move AI from pilots to production — safely and at scale.

Trusted by over 700 organizations worldwide including 9 of top 10 US banks Camunda helps enterprises boost operational efficiency accelerate time-to-value and deliver better customer experiences.

Fully remote and global we are in the middle of something bigger: transforming into an AI-first organisation built on our own platform.

We use Agentic AI to automate orchestrate intelligent processes and elevate human contribution across every team.

Named GP Bullhound’s Top 100 Next Unicorn list https://www.gpbullhound.com/articles/top-100-next-unicorns-the-uk-france-and-germany-lead-with-the-most-promising-technology-companies-in-europe/ 2025 Great Place to Work certified.

Visionary in 2025 Gartner® Magic Quadrant™ https://page.camunda.com/wp-2025-gartner-magic-quadrant-for-boat for Business Orchestration and Automation Technologies. ranked 3rd in Flexa's 2026 Most Flexible Companies https://flexa.careers/companies/camunda We’re growing fast and looking for top talent to join our team.

If you want meaningful work visible impact and put something genuinely rare on your CV keep reading.

About the role: As a Senior Information Security Engineer (AppSec) at Camunda you’ll join a small senior and highly collaborative InfoSec team that lives our FAITH values – Focus Ambition Integrity Talent and Humor – every day.

You’ll work hand-in-hand with our product and engineering teams across the entire SDLC to make sure our platform is designed built and shipped securely as we continue to grow.

This is a technical hands-on developer-centric developer-centric role where you’ll shape how we build secure Java services in a modern CI/CD SaaS environment strengthen our AppSec tooling and practices and directly influence how customers trust and adopt Camunda.

You can be based anywhere that allows you to collaborate effectively within CET to Eastern Time working hours.

What you'll be doing: - Partner with engineering teams throughout the SDLC – from early design and architecture discussions through implementation and testing to deployment – to embed security by design in our products. - Lead and evolve our AppSec tooling and workflows by implementing tuning and integrating SAST DAST SCA and container/image scanning into CI/CD pipelines and making sure findings are actionable for developers. - Drive vulnerability management for our applications and supply chain including triaging and prioritizing issues coordinating with teams on fix/mitigate/accept decisions and ensuring we continuously improve our security posture. - Perform secure design and architecture reviews and threat modeling for distributed API- and microservices-based systems helping teams understand security trade-offs and make sound risk-based decisions. - Support and help coordinate application-layer security incidents and escalations working closely with Engineering Support and other stakeholders to investigate contain and learn from issues. - Together with the rest of the InfoSec team help with security audits customer assurance and other processes What you bring: - Ability and/or willingness to use our product https://accounts.cloud.camunda.io/signup?_ga=2.47330343.127558761.1654184528-504024057.1654184528. - Strong Software engineering and secure coding background with substantial recent hands-on experience building and reviewing (Java) services working in CI/CD environments and shipping SaaS or other cloud-based applications securely. - Secure SDLC architecture & risk assessment experience including secure design reviews threat modeling for distributed/API/microservices systems and performing risk assessments on product changes or new features. - Vulnerability management & security tooling expertise with a proven track record of implementing and tuning SAST/DAST/SCA and container/image scanning evaluating and triaging findings (including false positives) and driving fix/mitigate/accept decisions with engineering teams. - Cross-team collaboration & communication skills enabling you to work effectively with Engineering Support Sales and other stakeholders while explaining complex security issues and trade-offs in a clear pragmatic way to both technical and non-technical audiences. - Developer-centric incident-savvy mindset meaning you are comfortable managing and supporting security incidents and escalations you see yourself as an enabler (not a gatekeeper) and you influence teams toward risk-based practical security improvements.

Nice-to-haves: - Experience developing in Python JavaScript or TypeScript in addition to Java. - Hands-on experience securing Kubernetes- or container-based workloads and modern cloud environments. - Prior work in a B2B software company especially in high-availability or multi-tenant contexts. - Experience running security training talks or workshops for engineering teams This role is an existing vacancy #LI-SG1 #LI-Remote #C1 What We Have to Offer: Compensation We offer competitive fair and transparent compensation.

Salary ranges are location-based with Standard and Major markets (global tech hubs) reflecting local competition.

The Annual Total Target Cash (base salary + 100% variable target where applicable) shown below spans from the minimum in a Standard market to the maximum in a Major market.

Final offers depend on skills experience and location and we typically hire in the first half of the range to allow room for growth: - United States: $143 800.00 to $231 900.00 - United Kingdom: £90 300.00 to £148 500.00 - Singapore: S$178 600.00 to S$267 900.00 If you’re based elsewhere you’ll be hired via Remote.com http://Remote.com (our global employer partner) and your Talent Acquisition Partner will provide a personalized Total Rewards Calculator after your first interview.

Equity: We also offer equity (where applicable) through our Virtual Stock Option Plan (VSOP) https://docs.google.com/document/d/1hoyQAPTZ5nV7J47D9n3yqK5hhLj160Xf36iyqEXNOWE/edit?tab=t.0#heading=h.2qon7r4kdfe1.

Benefits & Perks We invest in your wellbeing growth and ability to connect along with perks that support you no matter where you’re based.

Our benefits are globally designed and locally delivered where applicable. - Remote & Flexible: Work from anywhere with the setup that suits you home office budget co-working space support and flexible time off to recharge when you need it. - In Person Connection: We invest in meaningful face time through our Annual Kickoff (Vienna in 2025 Madrid in 2026!) team offsites and Camundi Connection Budgets including contributing to meetups while travelling and local gatherings with fellow Camundi. - Health & Wellbeing: Access locally tailored healthcare Modern Health for global mental wellbeing and our Live Well Lifestyle Spending Account (LSA) a flexible global benefit that puts you in control of your whole life not just work from: staying active to caring for family exploring personal passions meaningful experiences and investing in your financial wellbeing.

The Live Well program launches in 2026 and scales to €1 000 annually from 2027. - Financial Security: Retirement and pension plans (often with company contributions) plus life and disability insurance where relevant. - Professional Growth: Up to $/€/£1 000 per year for self-driven learning: courses certifications books you decide! ”Everyone is welcome at Camunda” — it’s a celebrated component of our culture.

We strive to create an inclusive environment that empowers our people.

At Camunda we honour diverse cultures and backgrounds and are proud to be an equal opportunity employer.

All qualified applicants will receive consideration without regard to gender race ethnicity religion belief sexual orientation age disability or any other protected characteristics under applicable law.

We are looking forward to your application!

Come join us and be part of Camunda’s incredible journey: Make an impact at a pivotal moment in our story!

AI in our hiring process: Camunda may use AI tools to aid the screening of applications and during the interview process.

You can learn more here https://camunda.com/ai-in-our-interviewing-process/