Product Security Incident Response Manager at Autodesk | Hybrid Hired

About the role

Product Security Incident Response Manager at Autodesk responsible for external security assessments, penetration testing, and team leadership. Balancing technical work with mentorship to improve security posture.

Responsibilities

Lead and evolve Autodesk’s external security assessments program, including penetration testing, vulnerability disclosure, security advisories, and the bug bounty program
Manage and mentor a team of application security engineers, setting clear goals, providing technical guidance, and supporting career growth
Plan, execute, and oversee penetration testing activities across Autodesk products and services, including scoping, execution, reporting, and remediation tracking
Own Autodesk’s vulnerability disclosure process, including intake, triage, coordination with product teams, and publication of security advisories
Partner closely with PSIRT, Legal, Trust, and Product teams to ensure vulnerabilities are handled consistently and responsibly
Manage and continuously improve the bug bounty program, including researcher engagement, triage workflows, reward strategy, and signal-to-noise optimization

Requirements

Strong experience in application security, offensive security, or vulnerability management
Hands-on experience conducting penetration tests for web applications, APIs, or cloud services
Experience managing or significantly contributing to a vulnerability disclosure program and/or bug bounty platform
Prior experience leading, mentoring, or managing engineers in a technical security role
Solid understanding of common vulnerability classes and exploitation techniques (e.g., OWASP Top 10)
Strong communication skills and comfort working with customers, engineers, product managers, and executive stakeholders

Benefits

Health insurance
Employee stock options
Paid time off
Professional development opportunities

Similar roles

Browse all Security Operations jobs

5 hours ago

EN

Supervisor, Global Security Operations Center

Enbridge

Supervisor for Global Security Operations Center at Enbridge. Leading a dedicated 24/7 team to monitor and protect global facilities and assets.

Hybrid Role

Calgary Canada Security Operations

yesterday

OH

Security Operations Analyst

Orion Health

Security Operations Analyst at Orion Health focusing on monitoring and maintaining security tools while collaborating with teams. Engaging with real - world threats and enhancing operational security processes.

Hybrid Role

Auckland New Zealand Security Operations

yesterday

DL

Senior Security Operations

Dolby Laboratories

Senior Global Security Analyst overseeing physical security operations at Dolby’s San Francisco headquarters. Collaborating with global partners to strengthen safety systems across Dolby locations.

Onsite Role

San Francisco United States Security Operations

$100,600 - $134,600 per year

yesterday

EB

Director, Integrated Security Operations Centre

EQ Bank | Equitable Bank

Director overseeing integrated security operations, focusing on SOC management and cyber defense strategies for a fintech company in Canada.

Hybrid Role

Toronto Canada Security Operations

4 days ago

NO

Security Operations Engineer, Detection and Response Team

Notion

Security Operations Engineer protecting Notion’s systems and users by investigating and responding to security events. Collaborating with a global team to enhance security processes and protocols.

Hybrid Role

Hyderabad India Security Operations

4 days ago

AR

SecOps Engineer

Aristocrat

SecOps Engineer at Aristocrat maintaining security for innovative iGaming platforms and collaborating with cross - functional teams. Focused on AWS services security and compliance assessments.

Hybrid Role

Skopje North Macedonia Security Operations

4 days ago

VG

Cybersecurity Incident Response Analyst – Level 2

Var Group

Cybersecurity Incident Response Analyst handling security events and incidents at Var Group in a hybrid work environment. Focused on ensuring response to security incidents and improving security processes.

Hybrid Role

Treviso Italy Security Operations

4 days ago

VG

Cybersecurity Incident Response Analyst – Level 3

Var Group

Cybersecurity Incident Response Analyst handling security incidents and threats. Working in a hybrid environment at Yarix, a leader in digital evolution.

Hybrid Role

Treviso Italy Security Operations

5 days ago

SH

IAM Security Ops Analyst II

Syneos Health

IAM Security Ops Analyst overseeing access management for clinical trial applications at Syneos Health. Collaborating with IT and compliance teams to enforce IAM policies and improve operational performance.

Hybrid Role

Hyderabad India Security Operations

5 days ago

CI

Fraud Operations Group Manager – Cards Security Operations

Citi

Fraud Operations Group Manager responsible for managing fraud management policies in the Operations Services team. Leading teams in minimizing fraud impacts while ensuring compliance and operational objectives.

Hybrid Role

San Antonio United States Security Operations

$119,680 - $179,520 per year