Principal Security Engineer

AutoStore holds a simple yet powerful vision: to store and move things for everyone everywhere. Founded in Norway weve grown into a global technology company. AutoStore uses advanced software to automate and orchestrate order fulfillment. Our goal is to ensure orders arrive faster than ever with minimal environmental impact. Thats how we help brands exceed customer expectations.

We have more than 1600 systems in nearly 60 countries and we grow continuously as a community of employees partners customers suppliers and connected technologies. Automation should make life easier and by listening carefully to our community we innovate to meet the industrys most complex needs. With AutoStore brands gain speed efficiency and improved workplaces. And much more floor space.

AutoStore moving things forward.

The Role:

We are seeking a Principal Security Engineer to act as the technical authority for end-to-end product security across hardware firmware and cloud software shaping and governing secure architecture at scale in a global robotics environment. Youll work with our integrator/customer base our internal experts and with regulatory bodies to ensure we build and maintain a best in class security posture.

Key Tasks and Responsibilities:

• Product Security Leadership (HW & SW): Own and operationalize secure development standards across hardware and software translating frameworks such as OWASP ASVS/SAMM NIST SSDF and IEC 62443 into pragmatic risk-based controls embedded in product architecture and engineering workflows.

• Secure Development Lifecycle (SSDLC) Ownership: Design evolve and govern a scalable automation-driven Secure SDLC that integrates security across design implementation testing release and maintenance without compromising engineering velocity.

• Product Embedded & Hardware-Adjacent Security: Drive secure design principles across firmware secure boot/update mechanisms device interfaces and cyber-physical systems applying defense-in-depth and system-level risk analysis.

• Threat Modeling & Risk Management: Lead structured threat modeling and product risk assessments translating complex technical risks into prioritized actionable engineering decisions.

• Compliance & Regulatory Enablement: Embed security requirements into product development while driving alignment with IEC 62443 ISO 27001/9001 SOC 2 NIST CIS and the Cyber Resilience Act including audit readiness and certification support.

• Security Tooling & Automation: Define and implement security tooling strategy (SAST DAST SCA secret scanning firmware analysis) and integrate controls directly into CI/CD and developer workflows.

• Engineering Enablement & Governance Establish security standards architecture guidelines KPIs and review processes while mentoring engineers and partnering with executive stakeholders to continuously elevate product security maturity.

Key Qualifications:

• 10 years in technical security engineering with experience shaping product security strategies

• Proven track record influencing security posture in software or product-driven companies

• Experienced engaging with executives customers auditors and partners on security matters

• Hands-on experience driving compliance with SOC 2 IEC 62443 ISO 27001 or similar standards

• Skilled at balancing security engineering velocity and business priorities

• Experience in hardware robotics or cyber-physical security is a plus

• Bachelors degree in Computer Science Engineering Robotics or related field

We offer:

• A Collaborative & Inclusive Culture where we celebrate and value everyones contributions encouraging diverse perspectives in decision-making.

• Work-Life Balance & Well-being: We offer 1 hour per week of paid exercise health insurance and a generous pension plan prioritizing your mental and physical well-being.

• A Creative and Safe Workplace by joining a company experiencing rapid growth with the stability of being Norways first unicorn listed on the Oslo Stock Exchange.

• International and Supportive Environment within a Norwegian multinational that values collaboration and innovation with a structured onboarding plan and career opportunities within the company

Location for this role is in our offices in Norway or the US.

Application deadline: April 10th 2026.Please note that we review applications continuously if this opportunity excites you we encourage you to apply as early as possible! All inquiries are treated confidentially

AutoStore does not accept agency resumes or assistance for this role. Please do not forward resumes to our jobs alias or AutoStore employees. AutoStore is not responsible for any fees related to unsolicited resumes. This policy should be respected.