Security Engineer

Security and Compliance Pune, MH

Job Summary

The successful candidate for the Security Engineer role will engage in a consulting/security engineering role with both internal clients and Avalara product teams to assess, develop and architect Avalara vulnerability scanning infrastructure and security operations solutions. The Security Engineer will contribute expertise to the vulnerability management program, as well as provide threat and vulnerability assessments to the broader organization.

You'll be responsible for providing guidance and real world mitigation steps to identified information risks. The successful candidate will be required to assess security flaws, determine mitigation strategies and drive fixes to resolution. A thorough understanding of security architectures and experience deploying complex enterprise solutions will be valuable experience for the right candidate.

Job Duties

  • Engineer and maintain vulnerability scanning and asset discovery infrastructure
  • Validate, triage, and escalate discovered vulnerabilities
  • Contribute to vulnerability management program compliance and data management
  • Conduct benchmark scanning to identify misconfigurations or configuration drift
  • Design and implement continuous monitoring of Avalara's public footprint and potential attack surfaces
  • Maintain superb risk rating profiles on 3rd party security performance management platforms
  • Perform technical consulting in the areas of threat and vulnerability assessment
  • Work autonomously as well as in team environments, often in stressful, high impact situations
  • Other IT Security duties as assigned
  • Qualifications

  • 5 -8 years experience as a System Security Engineer or Information Security Engineer
  • 3 years experience administering vulnerability scanning tools like Qualys, Tenable, or Rapid7
  • Experience conducting enterprise threat and vulnerability assessments which may include drafting large audience or executive vulnerability briefings
  • Working knowledge of TCP/IP, UDP, IPSEC, HTTP/S, VLANs, VPN, DHCP, DNS, NAT/PAT, and other networking and web protocols
  • Experience working with cybersecurity rating platforms such as BitSight or SecurityScorecard
  • Excellent written, verbal and presentation skills are essential and required
  • Strong analytical and organizational skills are required
  • Preferred Qualifications

  • Working experience with reporting tools like PowerBI or Tableau
  • Familiarity with CIS Benchmarks and system hardening processes
  • Experience using Tanium endpoint security (specifically Comply)
  • Experience with a variety of cloud providers such as AWS
  • CISSP, GIAC-GEVA, technology certifications and other security certifications is a plus