Senior Software Security Lead

Join the future of Warehouse Automation!

Were looking for a Senior Software Security Lead to help elevate the security posture of our software engineering organization. As part of our platform team an enabling group that partners across product teams youll make secure development simple consistent and effective.

Youll play a key role in educating guiding and empowering developers to build secure applications not by policing but by enabling. Youll maintain and evolve our Secure Software Development Lifecycle (SSDLC) drive adoption of best practices and work closely with engineering leaders to continuously improve our maturity. This is a great opportunity for someone with a solid software development background whos passionate about security and eager to make a broad organizational impact.

Job Responsibilities:

• Own and evolve our Secure Software Development Lifecycle (SSDLC) ensuring its practical current and well-adopted across teams.

• Partner with product engineering teams to assess and improve their security maturity including leading or supporting threat modelling as part of the SSDLC to identify and mitigate risks.

• Collaborate with DevOps and platform engineering to integrate effective security tools and checks into the CI/CD pipeline.

• Select evaluate and maintain security tools used in development and testing (e.g. SCA SAST DAST).

• Promote secure development habits through knowledge sharing training programs and by ensuring processes and documentation support audits and a strong security posture.

Qualifications:

• Solid foundation in software development and modern engineering practices (CI/CD code review testing etc.) with a minimum of 5 years in software development and 2 years in security.

• Experience in enablement or advisory roles (e.g. developer advocate platform engineer AppSec partner) and a collaborative mindset to drive secure development practices.

• Good understanding of application security principles secure coding standards and vulnerability management.

• Hands-on experience with secure development tooling (e.g. Aikido Snyk opengrep Renovate OWASP ZAP Trivy etc.).

• Familiarity with security and compliance frameworks such as OWASP SAMM NIST CSF the Cyber Resilience Act or ISO 27001.

We offer:

• A Collaborative & Inclusive Culture where we celebrate and value everyones contributions encouraging diverse perspectives in decision-making.

• Work-Life Balance & Well-being: We offer 1 hour per week of paid exercise health insurance and a generous pension plan prioritizing your mental and physical well-being.

• A Creative and Safe Workplace by joining a company experiencing rapid growth with the stability of being Norways first unicorn listed on the Oslo Stock Exchange.

• International and Supportive Environment within a Norwegian multinational that values collaboration and innovation with a structured onboarding plan and career opportunities within the company

Location for this role is either in Oslo (Lysaker) or Stavanger.

Application deadline: November 7th. Please note that we review applications continuouslyif this opportunity excites you we encourage you to apply as early as possible! All inquiries are treated confidentially.

AutoStore does not accept agency resumes or assistance for this role. Please do not forward resumes to our jobs alias or AutoStore employees. AutoStore is not responsible for any fees related to unsolicited resumes. This policy should be respected.