Cloud Security builds scalable, automated security solutions that integrate directly into how we design and operate our environments to enable our secure and reliable operation of Avalara's cloud platforms. We focus on engineering guardrails, developing event-driven automation, and applying cloud-native services and security data to identify, prioritize, and reduce risk across multi-cloud environments. The team works across multiple hyper-scale cloud providers to implement practical, developer-aligned solutions that improve security posture without slowing delivery. We are responsible for designing, building, and evolving security capabilities that protect Avalara's cloud assets, strengthen detection and response, and help teams to move quickly and securely at scale.

About the Role:

Avalara Security is looking for a Cloud Security Engineer to build automated, scalable security solutions that protect our cloud environments and help teams to operate securely by default. You will focus on engineering guardrails, automation, and data-driven capabilities that help identify and reduce risk across multi-cloud environments. You will work across cloud platforms and security domains to implement solutions, improve existing capabilities, and support ongoing security projects. This role is well suited for engineers who enjoy building systems, learning new technologies, and solving problems in a fast-evolving cloud environment.

What You'll Do:

Build and implement automated cloud security solutions and guardrails using infrastructure as code and cloud-native services
Assess cloud environments to identify security risks and misconfigurations, and guide remediation through scalable solutions and guidance
Develop and maintain event-driven automation and data pipelines to detect, prioritize, and respond to security issues
Support cloud incident response by providing subject matter expertise and contributing to investigation and remediation efforts
Collaborate with security and engineering teams to improve security posture and integrate solutions into cloud environments

What Your Responsibilities Will Be

Design, build, and deploy automated cloud security controls and guardrails using Terraform, Python, and cloud-native services across hyper-scale cloud providers. Identify security risks and misconfigurations in cloud environments, and translate findings into automated controls, guardrails, and guidance that improve security posture. Develop event-driven automation and data pipelines using tools like Wiz and cloud-native telemetry to detect, prioritize, and remediate security risks. Be a cloud security subject matter expert during incident response, supporting investigation, containment, and long-term improvements to detection and response capabilities.

What You'll Need to be Successful

Who You Are:

This role suits engineers who enjoy solving ambiguous problems and continuously learn in a fast-evolving cloud environment.

Degree in Information Systems, Information Security, or a related field, or equivalent practical experience in cloud security or engineering

Experience designing and implementing secure cloud solutions in at least one hyper-scale cloud provider, with an ability and operate across multi-cloud environments

Experience automating and scaling security solutions using Infrastructure as Code (Terraform), scripting languages (Python preferred), and CI/CD pipelines (GitLab or similar), including integrating with APIs
Experience with core cloud security principles, including identity and access management (IAM), logging, and cloud-native security services, and the ability to apply them in real-world environments
Experience assessing cloud environments for risks and misconfigurations, and translating findings into practical, scalable solutions rather than one-off fixes
Self-motivated and resilient, with experience learning new technologies, adapting to changing environments, and driving work forward with minimal direction
Experience collaborating across teams, providing guidance, and supporting others to achieve shared security outcomes

You May Also Have:

Experience building event-driven automation or security data pipelines using cloud-native services
Familiarity with multiple cloud platforms (Azure, GCP, OCI)
Experience working with cloud security posture management tools (e.g., Wiz) and using security data to lead prioritization and remediation
Experience supporting cloud incident response activities
Relevant certifications (CISSP, CISA, CISM, or cloud provider certifications)
Understanding of compliance frameworks such as SOC 2, PCI-DSS, NIST, or ISO 27001
Experience improving IAM practices or integrating with APIs to build scalable security automation

Avalara is an AI-first Company

AI is embedded in our workflows, decision-making, and products. Success here requires embracing AI as an essential capability.

You’ll bring experience using AI and AI-related technologies, ready to thrive here.
You’ll apply AI every day to business challenges - improving efficiency, contributing solutions, and driving results for your team, our company, and our customers.
You’ll grow with AI by staying curious about new trends and best practices, and by sharing what you learn so others can benefit too.

How We'll Take Care of You

Total Rewards

In addition to a great compensation package, paid time off, and paid parental leave, many Avalara employees are eligible for bonuses.

Health & Wellness
Benefits vary by location but generally include private medical, life, and disability insurance.

Inclusive culture and diversity
Avalara strongly supports diversity, equity, and inclusion, and is committed to integrating them into our business practices and our organizational culture. We also have a total of 8 employee-run resource groups, each with senior leadership and exec sponsorship.

What You Need To Know About Avalara

We’re defining the relationship between tax and tech.

We’ve already built an industry-leading cloud compliance platform, processing over 54 billion customer API calls and over 6.6 million tax returns a year. Our growth is real - we're a billion dollar business - and we’re not slowing down until we’ve achieved our mission - to be part of every transaction in the world.

We’re bright, innovative, and disruptive, like the orange we love to wear. It captures our quirky spirit and optimistic mindset. It shows off the culture we’ve designed, that empowers our people to win. We’ve been different from day one. Join us, and your career will be too.

We’re An Equal Opportunity Employer

Supporting diversity and inclusion is a cornerstone of our company — we don’t want people to fit into our culture, but to enrich it. All qualified candidates will receive consideration for employment without regard to race, color, creed, religion, age, gender, national orientation, disability, sexual orientation, US Veteran status, or any other factor protected by law. If you require any reasonable adjustments during the recruitment process, please let us know.

Apply now

See more open positions at Avalara

Privacy policy Cookie policy

Our Mission

Our History

Our Team

Our Board of Trustees

Board of Trustees Student Nominations

Audited Financials

Careers

Mentorship

Apprenticeship Pathway Program

Talent Network

Founders

Membership

Lifetime Membership

Responsible AI Certification (RAIC)

Apprenticeship Pathway Program Apprentice

Apprenticeship Pathway Program Industry Partners

NEXT

Tech Collabs

GHC

Donate

Recurring Donate

Sponsors & Partner Opportunities

Membership Sponsorship

Our Communities

Systers

Gift Membership

Case Studies & White Papers

Technical Equity Experience Study (TechEES)

Impact Reports

Visual Impact Report

Top Companies

Pass It On Awards

AnitaB.org Tech Journey Scholarship

Our Resources

Blog

Podcast

Become a Member

AnitaB.org Talent Network

Cloud Security Engineer

Job Description