Security Engineer - Detection Engineering

Job Requisition ID #23WD68601The Security Team @ Autodesk helps Autodesk design, build, deploy and maintain secure products. We are embedding security in the full spectrum of how we build our products from inception, design, development, testing to how we are running them in the cloud as well as how we are responding to any existing or emerging threats to our products or the building blocks of our products and services. Our job is to be one step ahead of the bad guys and use expertise, technology, and other resources to thwart their efforts to compromise our products and the environment in which they operate. Our team keeps a single-minded focus on protecting our customer’s data and their investment in our products by strengthening our applications, underlying services, and network. Position OverviewOur Security Observability framework provides centralized visibility across Autodesk that enables us to better secure our Infrastructure and data.  We are looking for an experienced Detection Engineer who can design, build, develop, engineer and mature our Security Observability/Logging framework and data engineering pipelines supporting Security Logging use cases.  Your work will enable our threat hunting and intel, SIRT and compliance teams to defend against threats targeting Autodesk and to build customer trust.ResponsibilitiesOnboard new data/log sources that increase Security visibility to our centralized log management platform Collect requirements and use cases from our internal Security stakeholders, identify events and fields of interest, and optimize the data sent to the log management platform using filtering engines like cribl, fluentd/fluent bit, open telemetry., etcBuild Infrastructure and develop automations to support centralized log collection/ingestion, data analytics, normalization and optimization, and correlation Setup integrations between log management platform and other critical Security tools like SOAR, asset inventory, reporting dashboard, EDR, WAF, CSPM., etcManage peripheral infrastructure supporting log management including Security indexes, add-ons, TAs, data schema for Security logsImprove Autodesk’s ability to detect intrusions in real-time by creating innovative solutions to complex security observability problems Support Security tooling and other detection/protection capabilities including EDR, WAF, network monitoring, threat detection services like Guard Duty/Microsoft Defender for CloudAssist with incident response and investigations as needed, as a SME in loggingAssist in the implementation and evaluation of regulatory compliance initiatives related to Security loggingMinimum QualificationsBachelors degree in Computer Science, Cyber Security, Computer Networks, Information Technology or equivalent3-5 years’ experience with SIEM solutions and log management/collection platform like Splunk Cloud, Enterprise Security, Datadog., etc. Hands on experience with event mapping, data normalization and optimization, CIM and standardization 1-3 years’ experience writing automation using python, Infrastructure as code(Terraform, CloudFormation) and other common programming/scripting languagesExperience analyzing threats, risks, vulnerabilities and exploits using Security and Infrastructure log data at scale. Familiarity with Security detection, response and threat analysis processesExperience with public cloud platforms such as AWS, Azure and GCP Experience with designing and building Infrastructure for long term log retention, archival and retrieval Excellent verbal and written communication skills Preferred QualificationsExperience writing CRIBL transforms Certified as Splunk Enterprise Certified Architect or Splunk Cloud Admin or Splunk Power User Security certifications such as SANS GIAC certified Detection Analyst, SANS GCIH, OSCPCertified AWS Solutions Architect or AWS Certified Security SpecialistCertified Azure Security Engineer Associate Experience with Data Science#LI-POSTAt Autodesk, we're building a diverse workplace and an inclusive culture to give more people the chance to imagine, design, and make a better world. Autodesk is proud to be an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender, gender identity, national origin, disability, veteran status or any other legally protected characteristic. We also consider for employment all qualified applicants regardless of criminal histories, consistent with applicable law.Are you an existing contractor or consultant with Autodesk? Please search for open jobs and apply internally (not on this external site). If you have any questions or require support, contact Autodesk Careers.Salary is one part of Autodesk’s competitive package. Offers are based on the candidate’s experience and geographic location. In addition to base salaries, we also have a significant emphasis on discretionary annual cash bonuses, commissions for sales roles, stock or long-term incentive cash grants, and a comprehensive benefits package.