Principal Software Security Engineer

Autodesk
426d$138,100 - $223,300
Match Resume

About The Position

The Principal Product Security Engineer at Autodesk will play a crucial role in enhancing the security of the company's products within the Architecture, Engineering, and Construction (AEC) industry. This position involves leveraging Offensive Security expertise to identify vulnerabilities, improve security processes, and collaborate with various teams to ensure the secure development of software. The role offers opportunities for professional growth through participation in security conferences and training sessions, contributing to the overall security posture of Autodesk's offerings.

Requirements

  • BS or MS or Equivalent Experience in Cybersecurity/Computer Science (or related technical field).
  • 5+ years of hands-on Offensive Security experience or 7+ years of a mix.
  • Experience with Offensive Security tools, techniques, and methodologies.
  • Experience working with programming languages such as C, C++, C#, Rust, Go, Javascript, Java, Python, Perl, PHP, TypeScript.

Nice To Haves

  • Experience with writing reports and communicating complex security concepts to technical personnel.
  • Familiarity with modern software practices including Continuous Integration, Continuous Delivery, and Infrastructure-as-Code.
  • Familiarity with Security Disciplines outside of Offensive Security (Privacy, GRC, Blue Teaming, Awareness).
  • Familiarity with authentication/authorization using OAuth2.0, OICD, SPIFFE, FIDO2, etc.
  • Familiarity with large-scale distributed systems, containing hybrid applications across desktop, mobile, and web.
  • Experience in the AEC industry or other regulated industry.

Responsibilities

  • Document, maintain, and improve the AEC Secure Software Development Lifecycle in collaboration with the Senior Distinguished Architect, Trust.
  • Manage and mature the AEC security vulnerability and DoD response processes.
  • Act as the primary point of contact for AEC 0-day reports and assist in engaging Researchers and Engineers.
  • Proactively fuzz, research, and investigate AEC Products and Processes for security issues and improvements.
  • Support all AEC Security incident BPM processes.
  • Assist engineering teams in secure code development through expertise.
  • Help set up policies, procedures, and standards to improve Security Posture.
  • Engage with AEC engineers to establish training, awareness resources, and other mechanisms to improve the security of AEC products.
  • Partner with other engineers across the company to share Software Security practices and improve transparency and efficiency.
  • Own the various Security metadata components within the Software Catalog, including creation, naming, and maintaining.
  • Attend Trust meetings across the AEC organization (bi-weekly, monthly, and quarterly).
  • Attend industry events and other conventions/conferences to gather new Software Security techniques.

Benefits

  • Health and financial benefits
  • Time away and everyday wellness
  • Annual cash bonuses
  • Stock grants
  • Comprehensive benefits package

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Principal

Industry

Publishing Industries

Education Level

Bachelor's degree

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service