The successful candidate for the Security Engineer role will engage in a consulting/security engineering role with both internal clients and Avalara product teams to assess, develop and architect Avalara vulnerability scanning infrastructure and security operations solutions. The Security Engineer will contribute expertise to the vulnerability management program, as well as provide threat and vulnerability assessments to the broader organization.
You'll be responsible for providing guidance and real world mitigation steps to identified information risks. The successful candidate will be required to assess security flaws, determine mitigation strategies and drive fixes to resolution. A thorough understanding of security architectures and experience deploying complex enterprise solutions will be valuable experience for the right candidate.
Job DutiesEngineer and maintain vulnerability scanning and asset discovery infrastructureValidate, triage, and escalate discovered vulnerabilitiesContribute to vulnerability management program compliance and data managementConduct benchmark scanning to identify misconfigurations or configuration driftDesign and implement continuous monitoring of Avalara's public footprint and potential attack surfacesMaintain superb risk rating profiles on 3rd party security performance management platformsPerform technical consulting in the areas of threat and vulnerability assessmentWork autonomously as well as in team environments, often in stressful, high impact situationsOther IT Security duties as assigned
Qualifications5 -8 years experience as a System Security Engineer or Information Security Engineer3 years experience administering vulnerability scanning tools like Qualys, Tenable, or Rapid7Experience conducting enterprise threat and vulnerability assessments which may include drafting large audience or executive vulnerability briefingsWorking knowledge of TCP/IP, UDP, IPSEC, HTTP/S, VLANs, VPN, DHCP, DNS, NAT/PAT, and other networking and web protocolsExperience working with cybersecurity rating platforms such as BitSight or SecurityScorecardExcellent written, verbal and presentation skills are essential and requiredStrong analytical and organizational skills are required
Preferred QualificationsWorking experience with reporting tools like PowerBI or TableauFamiliarity with CIS Benchmarks and system hardening processesExperience using Tanium endpoint security (specifically Comply)Experience with a variety of cloud providers such as AWSCISSP, GIAC-GEVA, technology certifications and other security certifications is a plus