Principal Security Software Developer

Autodesk is seeking a Principal Security Software Developer for the Trust Data Platform team. This role involves designing, developing, and maintaining secure, scalable, and reliable data platform infrastructure. Responsibilities include leading technical roadmap, integrating secure SDLC practices, participating in threat modeling, building security monitoring systems, and driving continuous improvement in engineering processes. The role requires collaboration with cross-functional teams and effective communication with stakeholders.

Must Have

• Bachelor’s or Master’s degree in Computer Science, Computer Engineering, Cyber Security, Information Security, or related field
• 8+ years in software engineering with security-focused development
• Experience upholding code quality standards and best practices
• Deep expertise in AWS (IAM, KMS, EC2, S3, RDS, Lambda, networking security, encryption, secure-by-design cloud architecture)
• Proficiency in Python and building security-focused software
• Applied knowledge of OWASP Top 10 and secure software engineering principles
• Hands-on experience with CI/CD pipelines and automation (Jenkins, GitLab CI, CircleCI)
• Strong understanding of Infrastructure as Code (IaC) using Terraform or CloudFormation
• Proven ability to integrate security controls into engineering workflows
• Experience with Snowflake or similar cloud data warehousing platforms
• Proven ability to design and implement scalable, secure data or platform solutions
• Excellent problem-solving, debugging, collaboration, and communication skills
• Experience working within Agile/Scrum development processes

Good to Have

• Experience with other programming languages such as Java or Go
• Knowledge of data governance and compliance standards (e.g., SOC, FedRAMP, GDPR)
• Security certifications (e.g., AWS Security Specialty, CISSP, CCSP, GWEB, GSEC, GCSA)

Perks & Benefits

• Competitive salary and benefits package
• Opportunity to work with cutting-edge technologies
• Dynamic and collaborative environment
• Career growth and development opportunities
• Culture that values diversity, innovation, and work-life balance
• Annual cash bonuses
• Stock grants
• Comprehensive benefits package

Position Overview

Autodesk is seeking a highly skilled Principal Security Software Developer to join our Trust Data Platform team. In this role, you will play a critical part in designing, developing, and maintaining our data platform infrastructure. You will work closely with cross-functional teams to ensure the reliability, scalability, and security of our data systems.

We offer competitive salary and benefits package. There is opportunity to work with cutting-edge technologies in a dynamic and collaborative environment. We offer career growth and development opportunities. Autodesk offers culture that values diversity, innovation, and work-life balance.

Responsibilities

• Lead the design and implementation of scalable, secure data platform solutions while shaping the technical roadmap and addressing technical debt
• Collaborate with product, architecture, engineering, and security teams to translate requirements into high-quality technical solutions
• Embed Secure SDLC practices by integrating automated security testing, static analysis, dependency scanning, and Infrastructure as Code (IaC) scanning into CI/CD workflows
• Participate in threat modeling and help teams mitigate risks through secure design and engineering guidance
• Build and maintain systems that support security monitoring, observability, anomaly detection, and compliance reporting
• Plan and deliver software releases using Agile methodologies, promoting open/inner-source development models
• Drive continuous improvement in engineering processes, secure coding practices, and system design to reduce complexity and improve quality
• Conduct reviews and audits of SDLC processes and remediate vulnerabilities, misconfigurations, and security defects across the platform
• Stay up to date on industry trends, best practices, and technologies
• Promote collaboration through open/inner source development models
• Apply continuous attention to technical excellence, secure coding principles and good design, resulting in a straightforward solution and reducing complexity
• Foster a culture of innovation, accountability, technical excellence, and secure engineering across teams
• Communicate effectively with stakeholders, providing regular updates on progress, risks, and key metrics

Minimum Qualifications

• Bachelor’s or Master’s degree in Computer Science, Computer Engineering, Cyber Security, Information Security, or related field
• 8+ years of experience in software engineering with a strong emphasis on security-focused development
• Experience in upholding and enforcing comprehensive code quality standards and best practices.
• Deep expertise in AWS, including IAM, KMS, EC2, S3, RDS, Lambda, networking security, encryption, and secure-by-design cloud architecture.
• Proficiency in Python and experience building security-focused software (e.g., authentication/authorization services, secrets management, audit/logging frameworks, threat detection or analytics tooling)
• Applied knowledge of OWASP Top 10 and secure software engineering principles, with demonstrated experience implementing them in production systems
• Hands-on experience with CI/CD pipelines and automation using tools such as Jenkins, GitLab CI, or CircleCI
• Strong understanding of Infrastructure as Code (IaC) using Terraform or CloudFormation
• Proven ability to integrate security controls into engineering workflows, including CI/CD security automation (SAST, SCA, IaC scanning) and participation in threat modeling and design reviews
• Experience with Snowflake, or similar cloud data warehousing platforms
• Proven ability to design and implement scalable, secure data or platform solutions
• Excellent problem-solving, debugging, collaboration, and communication skills
• Experience working within Agile/Scrum development processes

The Ideal Candidate

• Experience with other programming languages such as Java or Go
• Knowledge of data governance and compliance standards (e.g., SOC, FedRAMP, GDPR)
• Security certifications such as AWS Security Specialty, CISSP, CCSP, GWEB, GSEC, GCSA, or equivalent, demonstrating a strong understanding of modern security practices