Principal Security Engineer

AutoStore™ holds a simple yet powerful vision: to store and move things for everyone, everywhere. Founded in Norway, we've grown into a global technology company. AutoStore uses advanced software to automate and orchestrate order fulfillment. Our goal is to ensure orders arrive faster than ever, with minimal environmental impact. That’s how we help brands exceed customer expectations. 

We have more than 1600 systems in nearly 60 countries, and we grow continuously as a community of employees, partners, customers, suppliers, and connected technologies. Automation should make life easier, and by listening carefully to our community, we innovate to meet the industry’s most complex needs. With AutoStore™, brands gain speed, efficiency, and improved workplaces. And much more floor space. 

AutoStore – moving things forward.

The Role:

We are seeking a Principal Security Engineer to act as the technical authority for end-to-end product security across hardware, firmware, and cloud software — shaping and governing secure architecture at scale in a global robotics environment. You’ll work with our integrator/customer base, our internal experts, and with regulatory bodies to ensure we build and maintain a best in class security posture.

Key Tasks and Responsibilities:

• Product Security Leadership (HW & SW): Own and operationalize secure development standards across hardware and software, translating frameworks such as OWASP ASVS/SAMM, NIST SSDF, and IEC 62443 into pragmatic, risk-based controls embedded in product architecture and engineering workflows.

• Secure Development Lifecycle (SSDLC) Ownership: Design, evolve, and govern a scalable, automation-driven Secure SDLC that integrates security across design, implementation, testing, release, and maintenance without compromising engineering velocity.

• Product, Embedded & Hardware-Adjacent Security: Drive secure design principles across firmware, secure boot/update mechanisms, device interfaces, and cyber-physical systems, applying defense-in-depth and system-level risk analysis.

• Threat Modeling & Risk Management: Lead structured threat modeling and product risk assessments, translating complex technical risks into prioritized, actionable engineering decisions.

• Compliance & Regulatory Enablement: Embed security requirements into product development while driving alignment with IEC 62443, ISO 27001/9001, SOC 2, NIST, CIS, and the Cyber Resilience Act, including audit readiness and certification support.

• Security Tooling & Automation: Define and implement security tooling strategy (SAST, DAST, SCA, secret scanning, firmware analysis) and integrate controls directly into CI/CD and developer workflows.

• Engineering Enablement & Governance_ Establish security standards, architecture guidelines, KPIs, and review processes while mentoring engineers and partnering with executive stakeholders to continuously elevate product security maturity.

Key Qualifications:

• 10+ years in technical security engineering, with experience shaping product security strategies

• Proven track record influencing security posture in software or product-driven companies

• Experienced engaging with executives, customers, auditors, and partners on security matters

• Hands-on experience driving compliance with SOC 2, IEC 62443, ISO 27001, or similar standards

• Skilled at balancing security, engineering velocity, and business priorities

• Experience in hardware, robotics, or cyber-physical security is a plus

• Bachelor’s degree in Computer Science, Engineering, Robotics, or related field

We offer: 

• A Collaborative & Inclusive Culture where we celebrate and value everyone’s contributions, encouraging diverse perspectives in decision-making.

• Work-Life Balance & Well-being: We offer 1 hour per week of paid exercise, health insurance, and a generous pension plan, prioritizing your mental and physical well-being.

• A Creative and Safe Workplace by joining a company experiencing rapid growth, with the stability of being Norway’s first unicorn listed on the Oslo Stock Exchange.

• International and Supportive Environment within a Norwegian multinational that values collaboration and innovation with a structured onboarding plan and career opportunities within the company

Location for this role is in our offices in Norway or the US.

Application deadline: February 28th, 2026.  Please note that we review applications continuously —if this opportunity excites you, we encourage you to apply as early as possible! All inquiries are treated confidentially

AutoStore does not accept agency resumes or assistance for this role. Please do not forward resumes to our job's alias or AutoStore employees. AutoStore is not responsible for any fees related to unsolicited resumes. This policy should be respected.