Cloud Security Engineer
US-NC-Durham
NA Careers
Req #: 16667
Type: Regular
|
Overview: Cloud Security builds scalable, automated security solutions that integrate directly into how we design and operate our environments to enable our secure and reliable operation of Avalara's cloud platforms. We focus on engineering guardrails, developing event-driven automation, and applying cloud-native services and security data to identify, prioritize, and reduce risk across multi-cloud environments. The team works across multiple hyper-scale cloud providers to implement practical, developer-aligned solutions that improve security posture without slowing delivery. We are responsible for designing, building, and evolving security capabilities that protect Avalara's cloud assets, strengthen detection and response, and help teams to move quickly and securely at scale. About the Role: Avalara Security is looking for a Cloud Security Engineer to build automated, scalable security solutions that protect our cloud environments and help teams to operate securely by default. You will focus on engineering guardrails, automation, and data-driven capabilities that help identify and reduce risk across multi-cloud environments. You will work across cloud platforms and security domains to implement solutions, improve existing capabilities, and support ongoing security projects. This role is well suited for engineers who enjoy building systems, learning new technologies, and solving problems in a fast-evolving cloud environment. What You'll Do: * Build and implement automated cloud security solutions and guardrails using infrastructure as code and cloud-native services * Assess cloud environments to identify security risks and misconfigurations, and guide remediation through scalable solutions and guidance * Develop and maintain event-driven automation and data pipelines to detect, prioritize, and respond to security issues * Support cloud incident response by providing subject matter expertise and contributing to investigation and remediation efforts * Collaborate with security and engineering teams to improve security posture and integrate solutions into cloud environments Responsibilities: Design, build, and deploy automated cloud security controls and guardrails using Terraform, Python, and cloud-native services across hyper-scale cloud providers. Identify security risks and misconfigurations in cloud environments, and translate findings into automated controls, guardrails, and guidance that improve security posture. Develop event-driven automation and data pipelines using tools like Wiz and cloud-native telemetry to detect, prioritize, and remediate security risks. Be a cloud security subject matter expert during incident response, supporting investigation, containment, and long-term improvements to detection and response capabilities. Qualifications: Who You Are: This role suits engineers who enjoy solving ambiguous problems and continuously learn in a fast-evolving cloud environment. * Degree in Information Systems, Information Security, or a related field, or equivalent practical experience in cloud security or engineering Experience designing and implementing secure cloud solutions in at least one hyper-scale cloud provider, with an ability and operate across multi-cloud environments * Experience automating and scaling security solutions using Infrastructure as Code (Terraform), scripting languages (Python preferred), and CI/CD pipelines (GitLab or similar), including integrating with APIs * Experience with core cloud security principles, including identity and access management (IAM), logging, and cloud-native security services, and the ability to apply them in real-world environments * Experience assessing cloud environments for risks and misconfigurations, and translating findings into practical, scalable solutions rather than one-off fixes * Self-motivated and resilient, with experience learning new technologies, adapting to changing environments, and driving work forward with minimal direction * Experience collaborating across teams, providing guidance, and supporting others to achieve shared security outcomes You May Also Have: * Experience building event-driven automation or security data pipelines using cloud-native services * Familiarity with multiple cloud platforms (Azure, GCP, OCI) * Experience working with cloud security posture management tools (e.g., Wiz) and using security data to lead prioritization and remediation * Experience supporting cloud incident response activities * Relevant certifications (CISSP, CISA, CISM, or cloud provider certifications) * Understanding of compliance frameworks such as SOC 2, PCI-DSS, NIST, or ISO 27001 * Experience improving IAM practices or integrating with APIs to build scalable security automation
Share this job:
