Position Overview   

We are seeking motivated Security Engineer who will work on secure configuration and hardening efforts within our Secure Posture Management team. In this role you will implement and support Autodesk’s Secure Posture Management strategy for secure configuration baselines, cloud hardening, IaC security, vulnerability management, and golden image pipelines. This role requires hands-on skills, and the ability to work with and learn from engineering teams across the organization. You will collaborate and partner with diverse engineering teams across Autodesk. 

Job Responsibilities  

•  Support the unified security posture management strategy including CSPM, secure configuration, golden image pipelines, IaC templates, and vulnerability management.  

• Contribute to standards for secure cloud configurations in alignment with industry frameworks, such as CIS or NIST benchmarks.  

• Develop and maintain hardened baselines (CIS, NIST) across cloud environments, Windows, Linux, and container platforms. 

• Develop security artifacts, tooling and automations using tools such as Python, PowerShell, Groovy or Ruby. 

• Use Cloud Security Posture Management (CSPM) tooling to continuously monitor multiple cloud environments (AWS, Azure, GCP) for misconfigurations, security gaps and compliance issues.  

• Work with development teams to enhance features and ease of use for our golden image, Infrastructure as Code (IaC) pipelines, and embed secure configurations from design to runtime.  

• Monitor and remediate drift from security standards to ensure security across all environments.  

Minimum Qualifications  

• Bachelor's degree in computer science, information security, or a related field.  

•  2 - 5 years of experience in information security, DevOps or development, with a good understanding of automation, CI/CD and orchestration tooling like Spinnaker, Ansible, Harness, Kubernetes, etc., golden image pipelines, IaC templates (Terraform), or could security.  

• Experience in development, scripting languages, building and testing automation. Using tools such as Git, Artifactory, Jenkins, Spinnaker, or scripting languages such as Python, PowerShell, Groovy or Ruby. 

• Experience with cloud providers, AWS, Azure or GCP. 

• Familiarity with secure configuration and hardening frameworks, such as CIS Benchmarks, DISA STIG or NIST 800-53/190.  

• Familiarity with CSPM tools and secure configuration tools and platforms such as Tenable, Prisma Cloud, Orca, or Wiz.  

Preferred Qualifications  

• Certifications such as AWS Associate level certificates, Azure Associate level certificates or similar security focused certificates (Security+, etc.). 

•  Knowledge of secure software development, API automation, and integrating security checks into CI/CD pipelines. 

• Ability to develop security automation at scale (IaC modules, policy-as-code, cloud guardrails). 

• Ability to identify potential threats and vulnerabilities and recommend the path to fixing them. 

• Understanding of compliance frameworks (SOC2, ISO 27001, FedRAMP, PCI-DSS) as they relate to configuration and vulnerability management. 

• Lifelong learner with a commitment to continuous improvement.