Product Security Engineer - Logging(Splunk)

Job Requisition ID #24WD76595Position OverviewOur Security Observability framework provides centralized visibility across Autodesk that enables us to better secure our Infrastructure and data. We are looking for an experienced Security Engineer who can design, build, engineer and mature our Security Observability/Logging framework and data engineering pipelines supporting Security Logging use cases. Your work will enable our threat hunting and intel, SIRT and compliance teams to defend against threats targeting Autodesk and to build customer trust. You will report to manager and its hybrid work mode.ResponsibilitiesOnboard new data/log sources that increase Security visibility to our centralized log management platformYou will collect requirements and use cases from our internal Security team members, identify events and fields of interest, and improve the data sent to the log management platform using filtering engines like cribl, fluentd/fluent bit, open telemetryYou will build Infrastructure and develop automations to support centralized log collection/ingestion, data analytics, normalization and optimization, and correlationSetup integrations between log management platform and other critical Security tools like SOAR, asset inventory, reporting dashboard, EDR, WAF, CSPMManage peripheral infrastructure supporting log management including Security indexes, add-ons, TAs, data schema for Security logsImprove Autodesk's ability to detect intrusions in real-time by creating solutions to complex security observability problemsSupport Security tooling and other detection/protection capabilities including EDR, WAF, network monitoring, threat detection services like Guard Duty/Microsoft Defender for CloudAssist with incident response and investigations, as a SME in loggingAssist in the implementation and evaluation of regulatory compliance initiatives related to Security loggingMinimum QualificationsBachelor's degree in Computer Science, Cyber Security, Computer Networks, Information Technology or equivalent5-8 years' experience with SIEM solutions and log management/collection platform like Splunk Cloud, Enterprise Security, DatadogHands-on experience with event mapping, data normalization and optimization, CIM and standardization1-3 years' experience writing automation using python, Infrastructure as code(Terraform, CloudFormation) and other common programming/scripting languagesExperience with public cloud platforms such as AWS, Azure and GCPExperience analyzing threats, risks, vulnerabilities and exploits using Security and Infrastructure log data at scale. Familiarity with Security detection, response and threat analysis processesExperience designing and building Infrastructure for long-term log retention, archival and retrievalPreferred QualificationsExperience writing CRIBL transformsCertified as Splunk Enterprise Certified Architect or Splunk Cloud Admin or Splunk Power UserSecurity certifications such as SANS GIAC certified Detection Analyst, SANS GCIH, OSCPCertified AWS Solutions Architect or AWS Certified Security SpecialistCertified Azure Security Engineer AssociateExperience with Data Science #LI-AK1Learn MoreAbout AutodeskWelcome to Autodesk! Amazing things are created every day with our software – from the greenest buildings and cleanest cars to the smartest factories and biggest hit movies. We help innovators turn their ideas into reality, transforming not only how things are made, but what can be made.We take great pride in our culture here at Autodesk – our Culture Code is at the core of everything we do. Our values and ways of working help our people thrive and realize their potential, which leads to even better outcomes for our customers.When you’re an Autodesker, you can be your whole, authentic self and do meaningful work that helps build a better future for all. Ready to shape the world and your future? Join us!Salary transparencySalary is one part of Autodesk’s competitive compensation package. Offers are based on the candidate’s experience and geographic location. In addition to base salaries, we also have a significant emphasis on discretionary annual cash bonuses, commissions for sales roles, stock or long-term incentive cash grants, and a comprehensive benefits package.Diversity & BelongingWe take pride in cultivating a culture of belonging and an equitable workplace where everyone can thrive. Learn more here: https://www.autodesk.com/company/diversity-and-belongingAre you an existing contractor or consultant with Autodesk? Please search for open jobs and apply internally (not on this external site).