AppSec Jobs
← Back to all jobs

Autodesk

Application Security Engineer

Bengaluru, Karnataka, IndiaWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Autodesk

Autodesk, Inc. is a multinational software corporation founded in 1982, known for its design, engineering, and entertainment software. Headquartered in California, Autodesk empowers users across various industries, including architecture, engineering, construction, manufacturing, and media. The company aims to democratize advanced design tools, making them accessible from mainframes to personal computers. Autodesk's product portfolio includes computer-aided design (CAD), 3D modeling, simulation, Building Information Modeling (BIM), and cloud-based platforms. Its flagship products include AutoCAD, a leading CAD software, and Revit, a BIM solution. The company also offers industry-specific tools for manufacturing, civil engineering, and media and entertainment, along with cloud services for collaboration and project management. Autodesk has played a significant role in notable projects like One World Trade Center and Tesla electric cars, serving a diverse range of professionals globally.

Industry

information technology & services

Employees

16,000

5620 engineers

Revenue

$7.2B

Website

Visit →

Security at Autodesk

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • Autodesk's AppSec philosophy is centered on a 'shift-left' approach, aiming to embed security directly into the software development lifecycle (SDLC).
  • Their mission focuses on developer enablement rather than strict gatekeeping, emphasizing the need to provide developers with the tools and guidance to identify and remediate vulnerabilities early in their own environments.
  • Core practices include continuous vulnerability assessment and risk mitigation.

Security Team

  • Autodesk's security organization is led by Reeny Sondhi, Chief Security Officer.
  • The Application Security team includes specialized roles such as Principal Application Security Engineers and Application Security Engineers.
  • While the exact reporting line (e.g., to CISO or CTO) is not explicitly stated in verbatim text, the team is centralized within the security function and actively recruits for roles focused on embedding security into the SDLC.
  • A search of public professional profiles identified at least 6 individuals currently in AppSec-specific roles.

Key Initiatives

  • Active initiatives include the implementation of 'shift-left' security practices and the optimization of SAST tooling for developer use.
  • Autodesk maintains a robust vulnerability management process that includes a public security advisory page and a vulnerability disclosure program.
  • They also perform threat modeling and penetration testing as part of their secure SDLC.
  • No evidence of a formal 'Security Champions' program was found in public records.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.