Gelato has created the world’s largest global network for on-demand production of custom products – from t-shirts and mugs to books and wall art. We empower a new generation of ecommerce entrepreneurs to share their creativity worldwide while embracing local, sustainable production. By producing locally and perfectly matching supply with demand, we eliminate waste and reduce carbon emissions.
At Gelato, we don’t own production facilities – we build the software that connects them. With over 140 production partners in 32 countries, our network can deliver custom products to five billion people in just 72 hours. It’s smarter, faster, and greener.
With GelatoConnect, our SaaS platform, we’re driving innovation in print production. GelatoConnect simplifies operations for print producers by automating procurement, workflows, and logistics into one seamless system. By boosting efficiency and cutting costs, it helps businesses scale to meet market demands. With GelatoConnect, we’re reshaping the print industry to be more efficient, sustainable, and profitable.
Gelato is an AI-first, cloud-native platform transforming local, on-demand production and delivery — with zero physical assets. We power:
Global production orchestration: connecting e-commerce customers to 130+ partners across 32 countries. From AI-guided design to smart routing and logistics, we deliver to over 5 billion people in under 72 hours — faster, greener, smarter.
GelatoConnect: our AI-driven print production OS that helps producers master digital printing — from inventory to shipping — by automating every step: procurement, prepress, printing, packaging, and dispatch.
We are not just early adopters of AI — we’re AI-native builders. Security at Gelato is no different: we don’t just use AI tools, we build them into everything we do.
AI-first security operations using LLMs for alert triage, threat summarisation, runbook drafting, and incident documentation.
Autonomous AI agents driving detection, alerting, and response orchestration across our security tooling.
A culture of continuous experimentation — we actively encourage using AI to go further, faster, without cutting corners on rigour.
As Gelato continues its global expansion, we are seeking an Automation Engineer to join our growing security function. This is a hands-on, builder-focused role centred on designing, building, and shipping the AI and automation that multiplies what our security team can do. Rather than triaging alerts by hand, you’ll build the systems that triage them.
Working closely with the Head of Information Security and the wider security team, you’ll turn manual, repetitive security work into reliable automated workflows and intelligent agents. You’ll integrate our security tooling, wire up LLM-driven pipelines, and create the automation that keeps the business safe at scale.
You don’t need to have built everything before. You need strong engineering instincts, genuine curiosity, and the drive to ship. You’ll have a clear path to grow your skills across security engineering, AI/agent development, and detection-and-response automation.
Our security team operates as enablers, not blockers — your job is to build the tooling that keeps the business safe without slowing it down.
Design, build, and maintain automation that removes manual toil across detection, triage, response, and reporting.
Integrate security tooling (SIEM, EDR, IAM, cloud, ticketing) into seamless, reliable automated workflows.
Build and maintain SOAR-style playbooks and pipelines for enrichment, containment, and response.
Own the deployment, monitoring, and reliability of the automation you ship.
Build LLM-powered tools and autonomous agents for alert triage, threat summarisation, runbook generation, and incident documentation.
Develop and refine prompts, guardrails, and evaluations to make AI workflows safe and dependable in production.
Prototype, test, and ship AI-assisted approaches to threat hunting, log analysis, and security operations.
Develop integrations and APIs that connect security tools to internal systems and data sources.
Write clean, maintainable, well-tested code.
Maintain and improve internal libraries, documentation, and shared automation infrastructure.
Partner with the security team to identify the highest-leverage automation opportunities.
Document workflows clearly so the team can operate, trust, and extend what you build.
Automate evidence collection and control testing for compliance frameworks including ISO 27001, SOC 2, and NIST CSF.
2–4 years of experience in software engineering, automation/DevOps, security engineering, or a related hands-on building role — including internships, apprenticeships, or equivalent practical exposure.
Strong scripting and programming skills, particularly in Python, with a track record of building integrations against APIs.
Experience building automation workflows — whether through SOAR platforms, CI/CD, or workflow orchestration tools (e.g. n8n, Tines, Zapier).
AI-native working style — practical, hands-on experience building with LLMs (APIs, prompt engineering, and ideally agents), not just using them as a chat assistant.
Comfortable working in cloud environments, particularly AWS — you understand IAM, logging, and serverless or container-based deployment.
A solid grasp of core security concepts (the incident response lifecycle, common vulnerability classes, attack frameworks such as MITRE ATT&CK), or the curiosity and drive to ramp up quickly.
Clear written and verbal communication in English; able to document systems and decisions for both technical and non-technical audiences.
Experience with SOAR or workflow-automation platforms (Tines, Torq, n8n, or similar).
Hands-on experience deploying AI agents or LLM-powered applications in production.
Familiarity with security tooling such as SIEM, EDR, WAF, or vulnerability scanners (Semgrep, SonarQube, Coana, etc.).
Experience with infrastructure-as-code (Terraform), containers, and CI/CD pipelines.
Familiarity with compliance frameworks such as ISO 27001, SOC 2, or NIST CSF.
Relevant certifications — cloud (AWS), security (CompTIA Security+, CySA+), or equivalent; though we consider demonstrated experience over credentials.
Degree in Computer Science, Information Security, or a related field — though we value demonstrated experience over credentials.
We are a customer-obsessed team with the ambition to change the world by connecting technology to the printing industry and making it much more sustainable. Everyone who joins our team must feel genuinely intrigued and motivated by our mission. We expect a lot. We are a driven team with big goals, so we seek individuals who are genuinely passionate about their work and possess an entrepreneurial spirit. Our culture is unique and we live by our values, so it's worth learning more about our culture and how we work before presenting your application.
At Gelato, we pride ourselves on our global presence with 14 offices worldwide, fostering a dynamic and diverse work environment. Rooted in a culture that values collaboration, creativity, and camaraderie, we actively cultivate a company culture that thrives on shared experiences. We encourage team members to embrace this culture by working from our inspiring office spaces at least three days a week, allowing for meaningful connections and collective growth.
Lastly, we ask that you please upload your CV in English, regardless of which country you are applying from.
