Full Time Cloud Security Engineer Jobs (NOW HIRING)

What You'll Do
Cloud Security builds scalable, automated security solutions that integrate directly into how we design and operate our environments to enable our secure and reliable operation of Avalara's cloud platforms. We focus on engineering guardrails, developing event-driven automation, and applying cloud-native services and security data to identify, prioritize, and reduce risk across multi-cloud environments. The team works across multiple hyper-scale cloud providers to implement practical, developer-aligned solutions that improve security posture without slowing delivery. We are responsible for designing, building, and evolving security capabilities that protect Avalara's cloud assets, strengthen detection and response, and help teams to move quickly and securely at scale.
About the Role:
Avalara Security is looking for a Cloud Security Engineer to build automated, scalable security solutions that protect our cloud environments and help teams to operate securely by default. You will focus on engineering guardrails, automation, and data-driven capabilities that help identify and reduce risk across multi-cloud environments. You will work across cloud platforms and security domains to implement solutions, improve existing capabilities, and support ongoing security projects. This role is well suited for engineers who enjoy building systems, learning new technologies, and solving problems in a fast-evolving cloud environment.
What You'll Do:

• Build and implement automated cloud security solutions and guardrails using infrastructure as code and cloud-native services
• Assess cloud environments to identify security risks and misconfigurations, and guide remediation through scalable solutions and guidance
• Develop and maintain event-driven automation and data pipelines to detect, prioritize, and respond to security issues
• Support cloud incident response by providing subject matter expertise and contributing to investigation and remediation efforts
• Collaborate with security and engineering teams to improve security posture and integrate solutions into cloud environments

What Your Responsibilities Will Be
Design, build, and deploy automated cloud security controls and guardrails using Terraform, Python, and cloud-native services across hyper-scale cloud providers. Identify security risks and misconfigurations in cloud environments, and translate findings into automated controls, guardrails, and guidance that improve security posture. Develop event-driven automation and data pipelines using tools like Wiz and cloud-native telemetry to detect, prioritize, and remediate security risks. Be a cloud security subject matter expert during incident response, supporting investigation, containment, and long-term improvements to detection and response capabilities.
What You'll Need to be Successful
Who You Are:
This role suits engineers who enjoy solving ambiguous problems and continuously learn in a fast-evolving cloud environment.

• Degree in Information Systems, Information Security, or a related field, or equivalent practical experience in cloud security or engineering

Experience designing and implementing secure cloud solutions in at least one hyper-scale cloud provider, with an ability and operate across multi-cloud environments

• Experience automating and scaling security solutions using Infrastructure as Code (Terraform), scripting languages (Python preferred), and CI/CD pipelines (GitLab or similar), including integrating with APIs
• Experience with core cloud security principles, including identity and access management (IAM), logging, and cloud-native security services, and the ability to apply them in real-world environments
• Experience assessing cloud environments for risks and misconfigurations, and translating findings into practical, scalable solutions rather than one-off fixes
• Self-motivated and resilient, with experience learning new technologies, adapting to changing environments, and driving work forward with minimal direction
• Experience collaborating across teams, providing guidance, and supporting others to achieve shared security outcomes

You May Also Have:

• Experience building event-driven automation or security data pipelines using cloud-native services
• Familiarity with multiple cloud platforms (Azure, GCP, OCI)
• Experience working with cloud security posture management tools (e.g., Wiz) and using security data to lead prioritization and remediation
• Experience supporting cloud incident response activities
• Relevant certifications (CISSP, CISA, CISM, or cloud provider certifications)
• Understanding of compliance frameworks such as SOC 2, PCI-DSS, NIST, or ISO 27001
• Experience improving IAM practices or integrating with APIs to build scalable security automation

Avalara is an AI-first Company
AI is embedded in our workflows, decision-making, and products. Success here requires embracing AI as an essential capability.

• You'll bring experience using AI and AI-related technologies, ready to thrive here.
• You'll apply AI every day to business challenges - improving efficiency, contributing solutions, and driving results for your team, our company, and our customers.
• You'll grow with AI by staying curious about new trends and best practices, and by sharing what you learn so others can benefit too.

How We'll Take Care of You
Total Rewards
In addition to a great compensation package, paid time off, and paid parental leave, many Avalara employees are eligible for bonuses.
Health & Wellness
Benefits vary by location but generally include private medical, life, and disability insurance.
Inclusive culture and diversity
Avalara strongly supports diversity, equity, and inclusion, and is committed to integrating them into our business practices and our organizational culture. We also have a total of 8 employee-run resource groups, each with senior leadership and exec sponsorship.
What You Need To Know About Avalara
We're defining the relationship between tax and tech.
We've already built an industry-leading cloud compliance platform, processing over 54 billion customer API calls and over 6.6 million tax returns a year. Our growth is real - we're a billion dollar business - and we're not slowing down until we've achieved our mission - to be part of every transaction in the world.
We're bright, innovative, and disruptive, like the orange we love to wear. It captures our quirky spirit and optimistic mindset. It shows off the culture we've designed, that empowers our people to win. We've been different from day one. Join us, and your career will be too.
We're An Equal Opportunity Employer
Supporting diversity and inclusion is a cornerstone of our company - we don't want people to fit into our culture, but to enrich it. All qualified candidates will receive consideration for employment without regard to race, color, creed, religion, age, gender, national orientation, disability, sexual orientation, US Veteran status, or any other factor protected by law. If you require any reasonable adjustments during the recruitment process, please let us know.