Security Risk Specialist
- Avalara
- 3 - 8 years
- Kolkata
- 2 months ago
- Email to a friend
- Report this job
Job Description
What Youll Do
Avalara is looking for a security risk specialist to join our team reporting to the Senior Manager, Governance Risk & Compliance. This role requires the ability to conduct risk analysis at a systemic level, working closely with engineers and architects as they design and build Avalara s next-generation applications and services. The ideal candidate will have a deep understanding of technical controls and be able to analyze application / product security within Avalara, including internal processes and reporting, as well as risks identified through code and design reviews of both internal and customer-facing software products and solutions.
What Your Responsibilities Will Be
- Perform comprehensive risk assessments aligned with Avalara s risk management framework and develop actionable remediation plans.
- Analyze and identify risks across technical environments, with a focus on application design, software architecture, and security tooling configurations.
- Drive the identification, management, and mitigation of risks within security infrastructure and technical control implementations.
- Collaborate with cross-functional teams, including system owners, developers, and architects, to integrate risk management practices into the development lifecycle.
- Ensure risk and compliance controls are executed consistently and effectively across teams and within defined SLAs.
- Coordinate the documentation and migration of control information into Avalara s GRC platform.
- Maintain high standards of execution, coordination, and quality control across assigned risk and compliance initiatives.
- Proactively engage on multiple simultaneous projects with internal and external stakeholders to support strategic security and compliance objectives.
- Assist with the performance of ad hoc risk and compliance assessments as needed.
What Youll Need to be Successful
- Bachelor s degree in Information Technology, Computer Science, or equivalent experience.
- 3+ years of experience in IT Audit, IT Security, or IT Risk Management.
- Proven experience conducting systemic risk analysis in complex technical environments, including reviewing application design and architecture.
- Familiarity with standards and frameworks such as ISO 27001, SOC 1, SOC 2, SOX, NIST, etc.
- Strong understanding of application security principles, including the ability to assess risk through code and design review processes.
- Deep knowledge of technical controls, including their design, implementation, and effectiveness.
- Experience working with business continuity, disaster recovery, vendor risk management, data privacy, and regulatory compliance.
- Skilled in identifying business risks and evaluating trade-offs between technical and business objectives.
- Experience with risk management platforms (e.g., ServiceNow GRC) is a plus.
- Highly self-motivated, proactive, and capable of managing concurrent priorities with minimal supervision.
- Strong organizational, planning, verbal, and written communication skills.
Total Rewards
In addition to a great compensation package, paid time off, and paid parental leave, many Avalara employees are eligible for bonuses.
Health & Wellness
Benefits vary by location but generally include private medical, life, and disability insurance.
Benefits vary by location but generally include private medical, life, and disability insurance.
Inclusive culture and diversit y
Avalara strongly supports diversity, equity, and inclusion, and is committed to integrating them into our business practices and our organizational culture. We also have a total of 8 employee-run resource groups, each with senior leadership and exec sponsorship.
Avalara strongly supports diversity, equity, and inclusion, and is committed to integrating them into our business practices and our organizational culture. We also have a total of 8 employee-run resource groups, each with senior leadership and exec sponsorship.
Learn more about our benefits by region here: Avalara North America
What You Need To Know About Avalara
We re Avalara. We re defining the relationship between tax and tech.
We ve already built an industry-leading cloud compliance platform, processing nearly 40 billion customer API calls and over 5 million tax returns a year, and this year we became a billion-dollar business
.
Our growth is real, and we re not slowing down until we ve achieved our mission - to be part of every transaction in the world. We re bright, innovative, and disruptive, like the orange we love to wear. It captures our quirky spirit and optimistic mindset. It shows off the culture we ve designed, that empowers our people to win. Ownership and achievement go hand in hand here. We instill passion in our people through the trust we place in them.
We ve been different from day one. Join us, and your career will be too.
We re An Equal Opportunity Employer
Supporting diversity and inclusion is a cornerstone of our company we don t want people to fit into our culture, but to enrich it. All qualified candidates will receive consideration for employment without regard to race, color, creed, religion, age, gender, national orientation, disability, sexual orientation, US Veteran status, or any other factor protected by law. If you require any reasonable adjustments during the recruitment process, please let us know.
- Bachelor s degree in Information Technology, Computer Science, or equivalent experience.
- 3+ years of experience in IT Audit, IT Security, or IT Risk Management.
- Proven experience conducting systemic risk analysis in complex technical environments, including reviewing application design and architecture.
- Familiarity with standards and frameworks such as ISO 27001, SOC 1, SOC 2, SOX, NIST, etc.
- Strong understanding of application security principles, including the ability to assess risk through code and design review processes.
- Deep knowledge of technical controls, including their design, implementation, and effectiveness.
- Experience working with business continuity, disaster recovery, vendor risk management, data privacy, and regulatory compliance.
- Skilled in identifying business risks and evaluating trade-offs between technical and business objectives.
- Experience with risk management platforms (e.g., ServiceNow GRC) is a plus.
- Highly self-motivated, proactive, and capable of managing concurrent priorities with minimal supervision.
- Strong organizational, planning, verbal, and written communication skills.
- Perform comprehensive risk assessments aligned with Avalara s risk management framework and develop actionable remediation plans.
- Analyze and identify risks across technical environments, with a focus on application design, software architecture, and security tooling configurations.
- Drive the identification, management, and mitigation of risks within security infrastructure and technical control implementations.
- Collaborate with cross-functional teams, including system owners, developers, and architects, to integrate risk management practices into the development lifecycle.
- Ensure risk and compliance controls are executed consistently and effectively across teams and within defined SLAs.
- Coordinate the documentation and migration of control information into Avalara s GRC platform.
- Maintain high standards of execution, coordination, and quality control across assigned risk and compliance initiatives.
- Proactively engage on multiple simultaneous projects with internal and external stakeholders to support strategic security and compliance objectives.
- Assist with the performance of ad hoc risk and compliance assessments as needed.
Job Classification
Industry: IT Services & ConsultingFunctional Area / Department: IT & Information SecurityRole Category: IT & Information Security - OtherRole: IT & Information Security - OtherEmployement Type: Full timeContact Details:
Company: AvalaraLocation(s): Kolkata+ View Contact
Keyskills: Computer science SOC Disaster recovery ISO 27001 Application security Manager Quality Control Risk management Business continuity Information technology IT audit
Fraud Alert to job seekers!
₹ Not Disclosed
Similar positions
Avalara
If youre thinking scale, think bigger and dont stop there. At Walmart Global Tech India, we dont just innovate, we enable transformations across stores and different channels for the Walmart experience. \\r\\n \\r\\nA regular day at Walmart Global Tech India means using technology to deliver leadin...
Job Listings
We are in open beta version of website, please let us know if any issues, at: info(at)indigojobs.in