Sr. IT Security Engineer - Avalara

The Sr. Security Engineer – Identity and Access Management (IAM) will join a team that builds and matures security controls to protect our environment. You will be responsible for designing, implementing and maintaining our IAM systems to ensure the protection of sensitive data. This includes providing expert-level technical guidance, conducting security assessments, developing security controls, and collaborating with cross-functional teams.

Avalara Security is seeking a highly experienced professional who is passionate about information security and identity and access to join our IT Security team. The Sr. Security Engineer – Identity and Access Management (IAM) will join a team that builds and matures security controls to protect our environment. You will be responsible for designing, implementing and maintaining our IAM systems to ensure the protection of sensitive data. This includes providing expert-level technical guidance, conducting security assessments, developing security controls, and collaborating with cross-functional teams. A thorough understanding of security architectures and experience deploying complex enterprise solutions will be valuable experience for the right candidate.

**This role will be based out of our Durham, NC office. A hybrid work schedule is required (likely 3 days in the office, or as needed). Relocation assistance is available. C2C is NOT available for this role.**

Responsibilities

• Maintain an existing SailPoint IAM deployment
• Assist in evaluating the cloud and on-premises infrastructure with a focus on deploying and maintaining a PAM solution within the environment. 
• Facilitate automating user access reviews and audit artifacts
• Lead efforts to enforce principle of least privilege
• Provide expert-level technical guidance and support for IAM systems and processes
• Stay current with emerging IAM trends and technology
• Create roadmaps for the development and continuous improvement and maturity of IAM systems
• Develop standards, policies, and procedures related to IAM systems and security
• Provide metrics and reporting to management

Qualifications

• Minimum 7 years of progressive experience in security engineering role(s)
• The ideal candidate will have extensive experience (3+ years) working as a PAM engineer within a mid to large multi-cloud organization
  • Experience in standing up a PAM solution from scratch is a bonus. 
• Bachelor’s Degree in information systems, or information security related studies
• Strong demonstrated understanding of identity and access management concepts
• Experience developing standard operating procedures for IAM systems and related processes
• Experience developing policies, and standards
• REST/SOAP API experience required
• Knowledge of common security concepts and technologies
• Current understanding of Industry trends and emerging threats
• Experience delivering reporting and SLA management
• Excellent verbal and written communication skills
• Excellent problem-solving skills

Preferred Qualifications

• Master’s Degree in information systems, or information security related studies
• CISSP, CISA, or CISM certifications
• Experience using automation to more efficiently administer systems and processes
• Experience with native cloud IAM solutions, such as AWS IAM, Azure AD, or Google Cloud IAM
• Experience leveraging APIs to manage systems and integrate with enterprise systems
• Familiarity with Privilege Access Management (PAM) solutions is desired
• Familiarity with Zero Trust Architecture concepts is desired
• Understanding of SSAE18 SOC 2, PCI-DSS, NIST, and ISO 27000 standards, plus related assessment methodologies is desired

We’re Avalara. We’re defining the relationship between tax and tech. 

We’ve already built an industry-leading cloud compliance platform, processing nearly 40 billion customer API calls and over 5 million tax returns a year. 

Last year, we became a billion-dollar business, and our tribe expanded by a cool thousand people - there’s nearly 5,000 of us now.  Our growth is real, and we’re not slowing down - not until we’ve achieved our mission - to be part of every transaction in the world.

We’re bright, innovative and disruptive, like the orange we love to wear.  It captures our quirky spirit and optimistic mindset. It shows off the culture we’ve designed, that empowers our people to win. Ownership and achievement go hand in hand here. We instill passion in our people through the trust we place in them.

We’ve been different from day one. Join us, and your career will be too.

EEO Statement

We’re an Equal Opportunity Employer. Supporting diversity and inclusion is a cornerstone of our company — we don’t want people to fit into our culture, but to enrich it. All qualified candidates will receive consideration for employment without regard to race, color, creed, religion, age, gender, national orientation, disability, sexual orientation, US Veteran status, or any other factor protected by law. If you require any reasonable adjustments during the recruitment process, please let us know.