×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Security Manager

Principal Offensive Security Developer

Remote / Online - Candidates ideally in
Toronto, Ontario, C6A, Canada
Listing for: PowerToFly
Remote/Work from Home position
Listed on 2026-01-06
Job specializations:
  • IT/Tech
    Cybersecurity, Security Manager
Job Description & How to Apply Below

Job Requisition  # 25WD91774

25WD91774, Principal Offensive Security Developer

Position Overview

Are you passionate about computers, software, and the art of dismantling code, devices— even cars? Do you love protecting people from digital threats, whether they come from cybercriminals or simple human error? If you’ve ever read 2600 or celebrated the Phrack anniversary edition at DEFCON
33, we might have the perfect role for you.

At Autodesk, we’re transforming how the world is designed and built. Our mission is to empower customers to create energy‑efficient, low‑carbon‑footprint buildings through cutting‑edge software. We’re leading the Architecture, Engineering, and Construction (AEC) industry into a new era— one powered by AI and connected data platforms. As we grow into the Trusted Partner for the AEC industry, we’re looking for someone who can help keep our innovations secure.

Autodesk is hiring a Principal Offensive Security Developer to join our journey. In this role, you’ll bring your offensive security expertise to a team of passionate technologists. You’ll uncover critical security improvements in our products and identify creative ways to enhance our systems, processes, and practices.

You’ll collaborate across teams and geographies, offering insight and support as teams address vulnerabilities. You’ll help mature our Secure Software Development Lifecycle (SSDLC) across AEC teams and improve our vulnerability and zero‑day response processes.

We also invest in your growth—this role includes opportunities to attend top security conferences and training sessions throughout the year, so you can sharpen your skills and bring back fresh ideas.

This is a remote position open to candidates in the United States or Canada. (East Coast strongly preferred).

Responsibilities
  • Work with the Senior Distinguished Architect, Trust to document, maintain, and improve the AEC Secure Software Development Lifecycle.
  • Work with the Trust Organization in various Security Vulnerability Management and zero‑day response capacities.
  • Manage and mature the AEC security vulnerability and DoD response processes.
  • Act as primary point of contact for AEC zero‑day reports and assist in engaging researchers and developers.
  • Proactively fuzz, research, and investigate AEC products and processes for security issues and improvements.
  • Support all AEC security incident BPM processes.
  • Assist engineering teams in secure code development through expertise.
  • Help set up policies, procedures, and standards to improve security posture.
  • Engage with AEC developers to establish training, awareness resources, and other mechanisms to dramatically improve the security of AEC products.
  • Partner with other developers across the company to share software security practices, lessons learned, and improve transparency and efficiency.
  • Own the various security metadata components within the software catalog, including creation, naming, and maintenance.
  • Attend Trust meetings across the AEC organization (bi‑weekly, monthly, and quarterly).
  • Attend industry events and other conventions/conferences to gather new software security techniques and continuously improve this role’s impact.
Minimum Qualifications
  • BS or MS or equivalent experience in cybersecurity/computer science (or related technical field).
  • 5+ years of hands‑on offensive security experience or 7+ years of a mix.
  • Experience with offensive security tools, techniques, and methodologies.
  • Experience working with programming languages (e.g., C, C++, C#, Rust, Go, JavaScript, Java, Python, Perl, PHP, Type Script).
  • Experience collaborating with cross‑organizational teams.
Preferred Qualifications
  • Experience with writing reports and communicating complex security concepts to technical personnel.
  • Familiarity with modern software practices including Continuous Integration, Continuous Delivery, and Infrastructure‑as‑Code.
  • Familiarity with security disciplines outside of offensive security (privacy, GRC, blue teaming, awareness).
  • Familiarity with authentication/authorization using OAuth
    2.0, OIDC, SPIFFE, FIDO2, etc.
  • Familiarity with large‑scale distributed systems, containing hybrid applications across desktop, mobile, and web.
  • Exper…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search