IT Security Engineer

Security and Compliance Pune, MH

Job Summary

We are building cloud-based tax compliance solutions to handle every transaction in the world. Imagine every transaction you make - every tank of gas, cup of coffee, or pair of sneakers, every movie ticket, or streamed song, every sensor-to-sensor ping. Nearly every time you make a purchase, physical or digital, there is an accompanying unique and nuanced tax compliance calculation.

Job Duties

  • Develop, design, and implement holistic cloud security solutions, focusing on securing cloud/virtualization, network, endpoint, application, and data layers
  • Develop automation, tooling, and security controls to strengthen defenses or mitigate risks
  • Work with DevSecOps, SaaS Operations, and Infrastructure teams to develop secure access, configuration, and product deployment patterns leveraging cloud technologies
  • Determine technical solutions to address security weaknesses and work across teams at Avalara to refine your plans, obtain buy-in, and implement mitigating controls or technologies
  • Assist Incident Handlers, including iterative development, testing, and improvement of existing incident response procedures
  • Draft, acquire executive endorsement, and enforce cloud security standards
  • Work autonomously as well as in team environments, often in stressful, high impact situations


  • Minimum 5-8 years experience as a Security Engineer specializing in secure public cloud environments (AWS)
  • Deep knowledge of cloud operational models and secure SaaS architecture
  • Scripting or programming experience in Ruby, Python, Shell/BASH scripting, Perl, or other languages
  • Experience building applications and security tooling using primary AWS services such as: VPC, EC2, ELB/ALB, RDS, Route53, S3, Lambda and IAM
  • Demonstrable knowledge of other AWS services such as: CloudTrail, CloudWatch, GuardDuty, Inspector, AWS Certificate Manager, AWS WAF & Shield, Key Management Service (KMS), VPC Flow Logs, Macie
  • Experience conducting cloud infrastructure security assessments
  • Excellent written, verbal and presentation skills are required
  • Strong analytical and organizational skills are essential and required

Preferred Qualifications

  • Previous leadership as a cloud security SME for high visibility, high performance SaaS applications
  • Experience with Docker and Kubernetes
  • Familiarity with Palo Alto Networks Prisma Public Cloud (formerly RedLock)
  • Familiarity with other cloud providers, mainly Microsoft Azure and Google Cloud Platform
  • CISSP, AWS Certified Solutions Architect Professional and/or Security Specialty; other security certifications a plus

Avalara is an Equal Opportunity Employer. All qualified candidates will receive consideration for employment without regard to race, color, creed, religion, age, gender, national orientation, disability, sexual orientation, US Veteran status, or any other factor protected by law.