Senior Software Security Lead

Join the future of Warehouse Automation!We’re looking for a Senior Software Security Lead to help elevate the security posture of our software engineering organization. As part of our platform team, an enabling group that partners across product teams, you’ll make secure development simple, consistent, and effective.You’ll play a key role in educating, guiding, and empowering developers to build secure applications, not by policing, but by enabling. You’ll maintain and evolve our Secure Software Development Lifecycle (SSDLC), drive adoption of best practices, and work closely with engineering leaders to continuously improve our maturity. This is a great opportunity for someone with a solid software development background who’s passionate about security and eager to make a broad organizational impact.Job Responsibilities:Own and evolve our Secure Software Development Lifecycle (SSDLC), ensuring it’s practical, current, and well-adopted across teams.Partner with product engineering teams to assess and improve their security maturity, including leading or supporting threat modelling as part of the SSDLC to identify and mitigate risks.Collaborate with DevOps and platform engineering to integrate effective security tools and checks into the CI/CD pipeline.Select, evaluate, and maintain security tools used in development and testing (e.g., SCA, SAST, DAST).Promote secure development habits through knowledge sharing, training programs, and by ensuring processes and documentation support audits and a strong security posture.Qualifications:Solid foundation in software development and modern engineering practices (CI/CD, code review, testing, etc.), with a minimum of 5+ years in software development and 2+ years in security.Experience in enablement or advisory roles (e.g., developer advocate, platform engineer, AppSec partner) and a collaborative mindset to drive secure development practices.Good understanding of application security principles, secure coding standards, and vulnerability management.Hands-on experience with secure development tooling (e.g., Aikido, Snyk, opengrep, Renovate, OWASP ZAP, Trivy, etc.).Familiarity with security and compliance frameworks such as OWASP SAMM, NIST CSF, the Cyber Resilience Act, or ISO 27001.We offer: A Collaborative & Inclusive Culture where we celebrate and value everyone’s contributions, encouraging diverse perspectives in decision-making.Work-Life Balance & Well-being: We offer 1 hour per week of paid exercise, health insurance, and a generous pension plan, prioritizing your mental and physical well-being.A Creative and Safe Workplace by joining a company experiencing rapid growth, with the stability of being Norway’s first unicorn listed on the Oslo Stock Exchange.International and Supportive Environment within a Norwegian multinational that values collaboration and innovation with a structured onboarding plan and career opportunities within the companyLocation for this role is either in Oslo (Lysaker) or Stavanger. Application deadline: November 7th. Please note that we review applications continuously—if this opportunity excites you, we encourage you to apply as early as possible! All inquiries are treated confidentially.AutoStore does not accept agency resumes or assistance for this role. Please do not forward resumes to our job's alias or AutoStore employees. AutoStore is not responsible for any fees related to unsolicited resumes. This policy should be respected.