Automation Engineer (Information Security)
2 days ago
Madrid
ppGelato has created the world’s largest global network for on-demand production of custom products – from t-shirts and mugs to books and wall art. We empower a new generation of ecommerce entrepreneurs to share their creativity worldwide while embracing local, sustainable production. By producing locally and perfectly matching supply with demand, we eliminate waste and reduce carbon emissions. /p pAt Gelato, we don’t own production facilities – we build the software that connects them. With over 140 production partners in 32 countries, our network can deliver custom products to five billion people in just 72 hours. It’s smarter, faster, and greener. /p pWith GelatoConnect, our SaaS platform, we’re driving innovation in print production. GelatoConnect simplifies operations for print producers by automating procurement, workflows, and logistics into one seamless system. By boosting efficiency and cutting costs, it helps businesses scale to meet market demands. With GelatoConnect, we’re reshaping the print industry to be more efficient, sustainable, and profitable. /p h3Platform /h3 pGelato is an AI-first, cloud-native platform transforming local, on-demand production and delivery — with zero physical assets. We power: /p ul libGlobal production orchestration: /bconnecting e-commerce customers to 130+ partners across 32 countries. From AI-guided design to smart routing and logistics, we deliver to over 5 billion people in under 72 hours — faster, greener, smarter. /li libGelatoConnect: /bour AI-driven print production OS that helps producers master digital printing — from inventory to shipping — by automating every step: procurement, prepress, printing, packaging, and dispatch. /li /ul h3AI at the core /h3 pWe are not just early adopters of AI — we’re AI-native builders. Security at Gelato is no different: we don’t just use AI tools, we build them into everything we do. /p ul liAI-first security operations using LLMs for alert triage, threat summarisation, runbook drafting, and incident documentation. /li liAutonomous AI agents driving detection, alerting, and response orchestration across our security tooling. /li liA culture of continuous experimentation — we actively encourage using AI to go further, faster, without cutting corners on rigour. /li /ul h3The position /h3 pAs Gelato continues its global expansion, we are seeking an Automation Engineer to join our growing security function. This is a hands-on, builder-focused role centred on designing, building, and shipping the AI and automation that multiplies what our security team can do. Rather than triaging alerts by hand, you’ll build the systems that triage them. /p pWorking closely with the Head of Information Security and the wider security team, you’ll turn manual, repetitive security work into reliable automated workflows and intelligent agents. You’ll integrate our security tooling, wire up LLM-driven pipelines, and create the automation that keeps the business safe at scale. /p pYou don’t need to have built everything before. You need strong engineering instincts, genuine curiosity, and the drive to ship. You’ll have a clear path to grow your skills across security engineering, AI/agent development, and detection-and-response automation. /p pOur security team operates as enablers, not blockers — your job is to build the tooling that keeps the business safe without slowing it down. /p h3Responsibilities /h3 h3Security automation engineering /h3 ul liDesign, build, and maintain automation that removes manual toil across detection, triage, response, and reporting. /li liIntegrate security tooling (SIEM, EDR, IAM, cloud, ticketing) into seamless, reliable automated workflows. /li liBuild and maintain SOAR-style playbooks and pipelines for enrichment, containment, and response. /li liOwn the deployment, monitoring, and reliability of the automation you ship. /li /ul h3AI and agent development /h3 ul liBuild LLM-powered tools and autonomous agents for alert triage, threat summarisation, runbook generation, and incident documentation. /li liDevelop and refine prompts, guardrails, and evaluations to make AI workflows safe and dependable in production. /li liPrototype, test, and ship AI-assisted approaches to threat hunting, log analysis, and security operations. /li /ul h3Tooling and integrations /h3 ul liDevelop integrations and APIs that connect security tools to internal systems and data sources. /li liWrite clean, maintainable, well-tested code. /li liMaintain and improve internal libraries, documentation, and shared automation infrastructure. /li /ul h3Collaboration and enablement /h3 ul liPartner with the security team to identify the highest-leverage automation opportunities. /li liDocument workflows clearly so the team can operate, trust, and extend what you build. /li liAutomate evidence collection and control testing for compliance frameworks including ISO 27001, SOC 2, and NIST CSF. /li /ul h3Requirements /h3 ul li2–4 years of experience in software engineering, automation/DevOps, security engineering, or a related hands‑on building role — including internships, apprenticeships, or equivalent practical exposure. /li liStrong scripting and programming skills, particularly in Python, with a track record of building integrations against APIs. /li liExperience building automation workflows — whether through SOAR platforms, CI/CD, or workflow orchestration tools (e.g. n8n, Tines, Zapier). /li liAI-native working style — practical, hands‑on experience building with LLMs (APIs, prompt engineering, and ideally agents), not just using them as a chat assistant. /li liComfortable working in cloud environments, particularly AWS — you understand IAM, logging, and serverless or container-based deployment. /li liA solid grasp of core security concepts (the incident response lifecycle, common vulnerability classes, attack frameworks such as MITRE ATTCK), or the curiosity and drive to ramp up quickly. /li liClear written and verbal communication in English; able to document systems and decisions for both technical and non‑technical audiences. /li /ul h3Good to have /h3 ul liExperience with SOAR or workflow‑automation platforms (Tines, Torq, n8n, or similar). /li liHands‑on experience deploying AI agents or LLM‑powered applications in production. /li liFamiliarity with security tooling such as SIEM, EDR, WAF, or vulnerability scanners (Semgrep, SonarQube, Coana, etc.). /li liExperience with infrastructure‑as‑code (Terraform), containers, and CI/CD pipelines. /li liFamiliarity with compliance frameworks such as ISO 27001, SOC 2, or NIST CSF. /li liRelevant certifications — cloud (AWS), security (CompTIA Security+, CySA+), or equivalent; though we consider demonstrated experience over credentials. /li liDegree in Computer Science, Information Security, or a related field — though we value demonstrated experience over credentials. /li /ul h3What it's like to work at Gelato /h3 pWe are a customer‑obsessed team with the ambition to change the world by connecting technology to the printing industry and making it much more sustainable. Everyone who joins our team must feel genuinely intrigued and motivated by our mission. We expect a lot. We are a driven team with big goals, so we seek individuals who are genuinely passionate about their work and possess an entrepreneurial spirit. Our culture is unique and we live by our values, so it's worth learning more about our culture and how we work before presenting your application. /p pAt Gelato, we pride ourselves on our global presence with 14 offices worldwide, fostering a dynamic and diverse work environment. Rooted in a culture that values collaboration, creativity, and camaraderie, we actively cultivate a company culture that thrives on shared experiences. We encourage team members to embrace this culture by working from our inspiring office spaces at least three days a week, allowing for meaningful connections and collective growth. /p /p #J-18808-Ljbffr