Product Security Engineer

Job Requisition ID #23WD70065Position OverviewAutodesk is looking for a Product Security Engineer within the Autodesk Product Development and Manufacturing Solutions, Data and Process Management team. The successful candidate will help implement, design, manage and operate security controls and practices that enable Fusion family of products, making sure controls, process, practices, and tooling are in the alignment with the relevant Autodesk security and privacy standards and industry best practices. This is full-time role, reporting to the Senior Manager for Product Security.Responsibilities:Manage and coordinate regular security testing (vulnerability assessments, penetration testing, application security)Perform product security reviews, threat model, secure coding practices, application, and infrastructure security reviewPerform continuous risk assessment, propose, and track remediation actionsReview all access to critical systems and dataClosely work with Security team, engineering, and product teams to implement and maintain corporate security objectives, and to drive the implementation of security & privacy requirementsSupport efforts for monitoring, detecting, responding, and investigating security incidentsCoordinate business continuity testingContribute to security awareness, as well as periodic security updates and reminder communications for all team membersImplement and maintain security and privacy strategy and requirements, aligned with the company objectivesMinimum Qualifications:5+ years of information security, cybersecurity, or privacy experienceBachelor’s degree in Computer Science, Information Technology and Engineering or related field (or equivalent experience)Exceptional knowledge and experience in security assessments and testing, vulnerability assessment, secure software development and application security, penetration testingDemonstrated knowledge of information security risks and controls for application, data, infrastructure, mobile and overall enterprise system design (preferably in an AWS Cloud environment, and/or enterprise)Experience in managing security incidents, business continuity testingExperience in implementing security & privacy standards, like: SOC2, ISO27k, GDPR, CCPA or equivalent standardsAbility to manage technical projects and work with the business in prioritization and implementation of security requirementsExceptional integrity as demonstrated by previous positions of trust and authorityExcellent organizational skills and attention to detailFluency in English (verbal and written)Professional certification is an asset: e.g. CISSP, CISM #LI-MM1At Autodesk, we're building a diverse workplace and an inclusive culture to give more people the chance to imagine, design, and make a better world. Autodesk is proud to be an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender, gender identity, national origin, disability, veteran status or any other legally protected characteristic. We also consider for employment all qualified applicants regardless of criminal histories, consistent with applicable law.Are you an existing contractor or consultant with Autodesk? Please search for open jobs and apply internally (not on this external site). If you have any questions or require support, contact Autodesk Careers.Salary is one part of Autodesk’s competitive package. Offers are based on the candidate’s experience and geographic location. In addition to base salaries, we also have a significant emphasis on discretionary annual cash bonuses, commissions for sales roles, stock or long-term incentive cash grants, and a comprehensive benefits package.