Security Risk Engineer I

The Security Engineer I will assist in the design, implementation, and monitoring of security solutions to protect AvidXchange’s data and assets from cyber threats. This is accomplished through cross-functional planning, requirements gathering, and agile delivery. Working closely with Architecture, Security Operations, Technology Operations, Software Engineering, and the business, this role will drive adherence to technology and security standards, identify and solve for risks, provide security consulting, and evangelize secure technology solutions.

What you'll do

• Conduct Third Party risk management responses, while maintaining robust evidence documentation as assigned.
• Formulate technology and information security policies, standards, and controls to facilitate compliance with relevant regulations and industry standards, such as PCI DSS, SOC I & II, and Sarbanes Oxley (SOX).
• Conduct comprehensive security and IT risk assessments on various entities, including products, services, acquired companies, technologies, applications, and vendors.
• Compare and map compliance and regulations (including PCI DSS, SOC I & II, and SOX) to create an extensive control framework. Be forward-thinking and prepare for imminent audits by managing control documentation and evidence gathering.
• Perform continuous compliance monitoring, support risk and issue tracking, and provide regular updates to management on essential compliance metrics across IT, Information Security, BC/DR, and IT Service Management.
• Offer cross-functional expertise and support control development and issue remediation. Foster relationships across the organization, inclusive of business continuity planning, IT service management, and software engineering.
• Ensure strict compliance with business agreements, policies, procedures, and regulations, along with the capability to map controls and compliance requirements.
• Detect process and security gaps, propose enhancements, and assist in implementing corrective action.
• Anticipate risks/vulnerabilities/threats and propose requisite process improvements.
• Execute and manage Control/Risk Assessment, and remediate identified findings in accordance with process documents.

What we're looking for

• Certifications such as CISA, CRISC, CGEIT, GSEC, GSNA, GSEC, CISSP, CFE will be given preference
• A strong technical acumen with a keen interest in Information Security.
• Excellent verbal and written communication skills to effectively interact with internal customers and team members.

About AvidXchange

AvidXchange is a leading provider of accounts payable (“AP”) automation software and payment solutions for middle-market businesses and their suppliers. By trade, we are a technology company, but if you ask anyone who works here, they’ll tell you our people are at the core of who we are. We focus on creating a culture of Diversity, Inclusion & Belonging, and are proud to be a safe place where teammates can bring their whole selves to work. At AvidXchange,mindset is everything. We are Connected as People, Growth Minded, and Customer Obsessed. Thesethree mindsets represent our culture – who weare, who we’ve always been, and they guide usto improve every day.Since our founding in 2000 in Charlotte, NC, we’ve created a company of over 1,600 teammates working across the U.S., or remotely. AvidXchange is proud to be Certified as aGreat Place to Work . The prestigious recognition is based on anonymous data from our teammates and makes official what our teammates have known for years – that AvidXchange is a Great Place to Work.

Who you are:

• A go-getter with an entrepreneurial mindset – that meansyou arenot afraid of taking risks,winning bigorfacing the unknown.
• Someone who understands that business ispeople centric. Connecting with others as humans first allows you to develop mutually beneficial working relationships.
• Focused onmaking a difference for our customers. AvidXchange exists to help solve complex problems for our customers so we can all realize our potential.

What you’ll get:

AvidXchange teammates (we call them AvidXers) get the perks and prestige of a publicly traded tech company paired with the flexibility of a founder-led startup. We help our AvidXers develop as professionals and as human beings, providing work/life balance, development programs, competitive benefits and equity options. At AvidXchange, we are building more than a tech company – we are building an experience. We remain committed to a culture where you can fully be 'you’ – connected with others, chasing big goals, and making a meaningful impact. If you want to help us grow while realizing your potential and creating stories you’ll tell for years, you’ve come to the right place.

• 18 days PTO*
• 11 Holidays (8companyrecognized & 3floatingholidays)
• 16 hours per year ofpaid Volunteer Time Off (VTO)
• High Deductible Heath Plan Option that has $0 monthly premium for teammate-only coverage
• 100% AvidXchange paid Life Insurance
• 100% AvidXchange paid Long-Term Disability
• 100% AvidXchange paid Short-Term Disability
• Employee Assistance Program (EAP) - Providescounseling services, legal and financial consultations and health advocacy for Teammates and their eligible dependents
• Onsite Health Clinic with Atrium Health - available to Teammates and their eligible dependents
• 401k Matchup to 4%
• Parental Leave: 8 weeks 100% paid by AvidXchange**
• Discounts on Pet, Home, and Auto insurance
• BrightDimeFinancialWellnessTool, offeredfree toteammates
• Perks at Work:free discount program that provides teammates the opportunity to save on items fromelectronics, movie tickets, car buying, vacations,andmore
• Onsite gym fitness center, yoga studio, and basketball court
• Tuition Reimbursement up to the federal maximum of $5,250***
• Hybrid Workplace Flexibility
• Free parking

*Fully granted from beginning of year, pro-rated if hired mid-year

**Must be full-time for at least 3 months

***Must be full-time for at least one year

AvidXchange is an equal opportunity employer. AvidXchange is committed to equal employment opportunity in accordance with applicable federal, state, and local laws. AvidXchange will not discriminate against applicants for employment on any legally recognized basis. This includes, but is not limited to veteran status, race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age and physical or mental disability.

Create a Job Alert

Interested in building your career at AvidXchange, Inc.? Get future opportunities sent straight to your email.

*

indicates a required field

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Are you open to relocating or traveling for this position if required? * Select...

LinkedIn Profile

Will you now or in the future require sponsorship to retain authorization to work in the United States full-time? (i.e. F1, OPT, H1-B) * Select...

Are you legally authorized to work in the United States? * Select...

Are you an active teammate at AvidXchange? * Select...

Have you previously worked for AvidXchange? * Select...

Have you ever been employed or worked with a staffing/contract agency to provide services for AvidXchange in the past? * Select...

Have you ever been employed or worked for Price Waterhouse Cooper (PwC) in the past? * Select...

Please provide your salary expectations for this role? Your response will help us better understand your expectations and ensure that our offer aligns with your career goals. *

Primary Address Line 1 *

Primary Address Line 2

Primary Address City *

Primary Address State * Select...

Primary Address Zip Code *

We invite applicants to share their demographic background. If you choose to complete this survey, your responses may be used to identify areas of improvement in our hiring process.

How would you describe your gender identity? (mark all that apply) Select...

How would you describe your racial/ethnic background? (mark all that apply) Select...

How would you describe your sexual orientation? (mark all that apply) Select...

Do you identify as transgender? (select one) Select...

Do you have a disability or chronic condition (physical, visual, auditory, cognitive, mental, emotional, or other) that substantially limits one or more of your major life activities, including mobility, communication (seeing, hearing, speaking), and learning? (select one) Select...

Are you a veteran or active member of the United States Armed Forces? (select one) Select...