Results 1390 Jobs
Principal Offensive Security Engineer

Autodesk

Save Job
Autodesk

Principal Offensive Security Engineer

Hybrid Toronto, Canada +3 locations (Hybrid) Full Time
Posted a month ago
Save Job

Watch this video to learn more about Autodesk

Work Location Eligibility

This position is open to candidates based in the following locations:

Toronto, Canada Montreal, Canada United States Gabon
powertofly approved What Autodesk Has to Offer:

Autodesk makes the software and tools that help people imagine, design, and make a better world. If you've ever driven a high-performance car, admired a towering skyscraper, used a smartphone, or watched a great film, chances are you've experienced what millions of Autodesk customers are doing with their software. Autodesk offers their employees benefits like:

  • Insurance: Health/Dental/Vision/Life
  • Work - Life Balance
  • Paid volunteer time off
  • 6 week paid sabbatical every 4 years
  • Employee Resource Groups
  • A "week of rest" at year's end

    • Job Details

    Job Requisition ID #

    25WD91774

    Position Overview

    Are you passionate about computers, software, and the art of dismantling code, devices—even cars? Do you love protecting people from digital threats, whether they come from cybercriminals or simple human error? If you’ve ever read 2600 or celebrated the Phrack anniversary edition at DEFCON33, we might have the perfect role for you.

    At Autodesk, we’re transforming how the world is designed and built. Our mission is to empower customers to create energy-efficient, low-carbon-footprint buildings through cutting-edge software. We’re leading the Architecture, Engineering, and Construction (AEC) industry into a new era—one powered by AI and connected data platforms. As we grow into the Trusted Partner for the AEC industry, we’re looking for someone who can help keep our innovations secure.

    Autodesk is hiring a Principal Offensive Security Engineer to join our journey. In this role, you’ll bring your offensive security expertise to a team of passionate technologists. You’ll uncover critical security improvements in our products and identify creative ways to enhance our systems, processes, and practices.

    You’ll collaborate across teams and geographies, offering insight and support as they address vulnerabilities. You’ll help mature our Secure Software Development Lifecycle (SSDLC) across AEC teams and improve our vulnerability and zero-day response processes.

    We also invest in your growth—this role includes opportunities to attend top security conferences and training sessions throughout the year, so you can sharpen your skills and bring back fresh ideas.

    This is a remote position open to candidates in the United States or Canada. (east coast strongly preferred).

    Responsibilities

    • Work with the Senior Distinguished Architect, Trust; to document, maintain, and improve the AEC Secure Software Development Lifecycle

    • Work with the Trust Organization in various Security Vulnerability Management and 0-day response capacities

    • Manage and mature the AEC security vulnerability and DoD response processes

    • Act as primary point of contact for AEC 0-day reports and assist in engaging Researchers and Engineers

    • Proactively fuzz, research, and investigate AEC Products and Processes for Security issues and improvements

    • Support all AEC Security incident BPM processes

    • Assist engineering teams in secure code development through expertise

    • Help with setting up policies, procedures, and standards to improve Security Posture

    • Engage with AEC engineers to establish training, awareness resources, and other mechanisms to dramatically improve the security of AEC products

    • Partner with other engineers across the company to share Software Security practices, lessons learned, and improve transparency and efficiency

    • Own the various Security metadata components within the Software Catalog, including creation, naming, and maintaining

    • Attend Trust meetings across the AEC organization (bi-weekly, monthly, and quarterly)

    • Attend industry events and other conventions/conferences to gather new Software Security techniques and to continuously improve this roles’ impact

    Minimum Qualifications:

    • BS or MS or Equivalent Experience in Cybersecurity/Computer Science (or related technical field)

    • 5+ years of hands-on Offensive Security experience or 7+ years of a mix

    • Experience with Offensive Security tools, techniques, and methodologies

    • Experience working with programming languages (Eg. C, C++, C#, Rust, Go, Javascript, Java, Python, Perl, PHP, TypeScript...)

    • Experience collaborating with cross-organizational teams


    Preferred Qualifications

    • Experience with writing reports and communicating complex security concepts to technical personnel

    • Familiarity with modern software practices including Continuous Integration, Continuous Delivery, and Infrastructure-as-Code

    • Familiarity with Security Disciplines outside of Offensive Security (Privacy, GRC, Blue Teaming, Awareness)

    • Familiarity with authentication/authorization using OAuth2.0, OICD, SPIFFE, FIDO2, etc.

    • Familiarity with large-scale distributed systems, containing hybrid applications across desktop, mobile, and web

    • Experience in the AEC industry or other regulated industryThe Ideal Candidate

    • Easily collaborates with other members of a team to deliver value

    • Constantly strives to learn new technologies and methodologies

    • Is adaptable, customer-focused, and seek new ways to solve hard problems

    • Is transparent and work in an open sharing manner, leveraging automation

    Learn More

    About Autodesk

    Welcome to Autodesk! Amazing things are created every day with our software – from the greenest buildings and cleanest cars to the smartest factories and biggest hit movies. We help innovators turn their ideas into reality, transforming not only how things are made, but what can be made.

    We take great pride in our culture here at Autodesk – it’s at the core of everything we do. Our culture guides the way we work and treat each other, informs how we connect with customers and partners, and defines how we show up in the world.

    When you’re an Autodesker, you can do meaningful work that helps build a better world designed and made for all. Ready to shape the world and your future? Join us!

    Salary transparency

    Salary is one part of Autodesk’s competitive compensation package. For U.S.-based roles, we expect a starting base salary between $138,100 and $223,300. Offers are based on the candidate’s experience and geographic location, and may exceed this range. In addition to base salaries, our compensation package may include annual cash bonuses, commissions for sales roles, stock grants, and a comprehensive benefits package.

    Equal Employment Opportunity

    At Autodesk, we're building a diverse workplace and an inclusive culture to give more people the chance to imagine, design, and make a better world. Autodesk is proud to be an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender, gender identity, national origin, disability, veteran status or any other legally protected characteristic. We also consider for employment all qualified applicants regardless of criminal histories, consistent with applicable law.

    Diversity & Belonging

    We take pride in cultivating a culture of belonging where everyone can thrive. Learn more here: https://www.autodesk.com/company/diversity-and-belonging

    Are you an existing contractor or consultant with Autodesk?

    Please search for open jobs and apply internally (not on this external site).

    Company Details
    Autodesk
     San Francisco, CA, United States
    Work at Autodesk

    We believe flexibility in how and where work gets done is good for our people and teams. Embracing a hybrid-first model allows us to better meet... Read more

    How To Find Flexible Remote Jobs That Allow You To Work From Home or Anywhere

    Trying to find a flexible remote job? You should search for different terms depending on exactly the type of job you’re looking for. Some of the most common search terms include:

    • Remote Jobs
    • Work From Home Jobs
    • Online Jobs
    • Flexible Jobs
    • Telecommuting Jobs
    • Freelance Jobs

    Times have changed, and so has the workforce. Gone are the days of geographical limitations on who companies can hire. Digital nomads are on the rise, but they’re not the only ones looking for flexible jobs. Stay-at-home moms, people with physical mobility issues, and myriad more can benefit from the option to work from home.

    You can find all of the types of jobs listed above on our site, and while many of those terms can be used synonymously, it’s good to be able to define them and know what you’re looking for so that you can find a job that’s the best fit for you.

    Remote Jobs

    A truly remote job allows you to work from anywhere, with no restrictions on timezone, state, or country. So if you’re hoping to be a proper digital nomad, make sure you’re looking for remote jobs. It’s also worth noting that most “remote jobs” are considered full-time roles.

    You can learn more about the definition of remote jobs here. Note, Many companies will mention that a job gives you the option to work remotely - it’s good to clarify whether they mean the position can be done remotely full time, or if what they’re really offering are home office days. Phrasing like “option to work remotely once a week” should make it clear that you’re expected to be physically present the rest of the time.

    Work From Home Jobs

    “Work from home jobs” is one of the most common search terms for folks looking to break away from the restrictions of a traditional office. In fact, it returns 10 times as many results as “remote jobs.” So if you want to cast your net wide, then this may be the way to go… But “work from home jobs” can function as a bit of a catch-all - unlike a search for remote jobs, which will tend to return a number of legitimate full-time opportunities like the ones on our site, work from home jobs can mean a lot of different things. Everything from teaching English online to selling your crafts on Etsy would be considered work from home jobs.

    Unlike remote jobs, work from home jobs don’t necessarily mean you’ll have the support of an employer… it’s literally any job that you can do from home. So if you want to see the full breadth of non-office jobs/work that’s available, search for “work from home jobs”... but if you want a full-time role with a 401k that lets you work from anywhere, consider a more tailored search for “remote jobs.”

    Online Jobs

    “Online jobs” returns even more searches than work from home jobs. Online jobs are any jobs that you can do just by being connected to the internet. Lots of these jobs are part-time, pay by the hour type roles. Think English teacher, online tutor, part-time blogger, resume writer… they tend to be very gig focused, and companies offering these roles will almost always pay you by the hour. Great if you want flexibility, not necessarily if you want stability.

    Flexible Jobs

    Flexible jobs can mean a lot of different things. You can have an in-office job that’s flexible because you’re allowed to set your own hours. Or because you’re allowed to work from home a certain number of days each month. It might also mean working part-time (or having the option to).

    Flexible jobs can also be remote or work from home jobs in which you’re allowed to set your own schedule (though you should note, not all remote/virtual/online jobs are actually flexible - many of them assign strict hours). In conclusion, flexible jobs mean a lot of different things to different people, but if the ability to set your own schedule is important to you, you should definitely be looking for flexible jobs - regardless of whether they’re remote or in-office.

    Telecommuting Jobs

    A lot of jobs listed as remote jobs are actually telecommuting jobs. Telecommuting jobs are full-time roles with companies who can offer you the flexibility to work from home 99% of the time, but might need you to reside in a certain physical location or time zone due to practical constraints. (You can learn more about the tax reasons for this here.) You might be expected to occasionally go to the office for trainings, or you might need to meet in person with clients in a certain area. These jobs are great if you want both a high degree of flexibility and stability, while remaining in your current area. They’re not ideal for would-be digital nomads.

    Freelance Jobs

    Freelance jobs are booming in today’s gig economy. They afford you a lot of flexibility because you set your own schedule, and oftentimes your prices. But as noted with online jobs, a lot of times, you’re “freelancing” for a company even though you’re really working for them almost full time.. But instead of paying you as a full-time employee, they’re paying you by the hour or by the product. This is often less preferable to a full-time remote job that offers more stability and better pay. That said, searching for freelance jobs online can be a helpful way to launch your own freelance career. Maybe you start doing freelance work on gig sites like Fiverr, but are ultimately able to go out on your own once you’ve built up a portfolio and client list. It’s at this point that freelance work can become truly lucrative. It’s worth noting that not all freelance work can be done remotely - depending on your skill-sets, you may need to be able to meet in person with your clients.

    You can find freelance opportunities with legit companies here on PowerToFly.