Principal Offensive Security Developer

Job Requisition ID: 25WD91774 Job Overview Vous êtes passionné par les ordinateurs, les logiciels et l'art de démonter des codes, des appareils, voire des voitures ? Vous aimez protéger les gens contre les menaces numériques, qu'elles proviennent de cybercriminels ou d'une simple erreur humaine ? Si vous avez déjà lu 2600 ou célébré l'édition anniversaire de Phrack à DEFCON33, nous avons peut-être le poste idéal pour vous. Are you passionate about computers, software, and the art of dismantling code, devices—even cars? Do you love protecting people from digital threats, whether they come from cybercriminals or simple human error? If you’ve ever read 2600 or celebrated the Phrack anniversary edition at DEFCON33, we might have the perfect role for you. At Autodesk, we’re transforming how the world is designed and built. Our mission is to empower customers to create energy‑efficient, low‑carbon‑footprint buildings through cutting‑edge software. We’re leading the Architecture, Engineering, and Construction (AEC) industry into a new era—one powered by AI and connected data platforms. Location This is a remote position open to candidates in the United States or Canada. (East Coast strongly preferred). Responsibilities Work with the Senior Distinguished Architect, Trust; to document, maintain, and improve the AEC Secure Software Development Lifecycle Work with the Trust Organization in various Security Vulnerability Management and 0‑day response capacities Manage and mature the AEC security vulnerability and DoD response processes Act as primary point of contact for AEC 0‑day reports and assist in engaging researchers and developers Proactively fuzz, research, and investigate AEC products and processes for security issues and improvements Support all AEC security incident BPM processes Assist engineering teams in secure code development through expertise Help with setting up policies, procedures, and standards to improve security posture Engage with AEC developers to establish training, awareness resources, and other mechanisms to dramatically improve the security of AEC products Partner with other developers across the company to share software security practices, lessons learned, and improve transparency and efficiency Own the various security metadata components within the software catalog, including creation, naming, and maintaining Attend Trust meetings across the AEC organization (bi‑weekly, monthly, and quarterly) Attend industry events and other conventions/conferences to gather new software security techniques and to continuously improve this role’s impact Minimum Qualifications BS or MS or equivalent experience in cybersecurity/computer science (or related technical field) 5+ years of hands‑on offensive security experience or 7+ years of a mixed background Experience with offensive security tools, techniques, and methodologies Experience working with programming languages (e.g., C, C++, C#, Rust, Go, Javascript, Java, Python, Perl, PHP, TypeScript) Experience collaborating with cross‑organizational teams Preferred Qualifications Experience with writing reports and communicating complex security concepts to technical personnel Familiarity with modern software practices, including continuous integration, continuous delivery, and infrastructure‑as‑code Familiarity with security disciplines outside of offensive security (privacy, GRC, blue teaming, awareness) Familiarity with authentication/authorization using OAuth2.0, OIDC, SPIFFE, FIDO2, etc. Familiarity with large‑scale distributed systems, hybrid applications across desktop, mobile, and web Experience in the AEC industry or another regulated industry Excellent team collaboration skills, customer‑focus, and a desire to solve complex problems Continuous learning mindset and openness to automation Equal Employment Opportunity At Autodesk, we’re building a diverse workplace and an inclusive culture to give more people the chance to imagine, design, and make a better world. Autodesk is proud to be an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other legally protected characteristic. We also consider for employment all qualified applicants regardless of criminal histories, consistent with applicable law. #J-18808-Ljbffr