Senior Security AI Governance Specialist

We are looking for a hands-on AI Governance Specialist with experience applying governance principles to new technologies. You will help design, implement, and scale AI governance and compliance processes that ensure responsible, transparent, and ethical use of AI systems. You will also contribute to broader security governance programs, applying AI and automation to modernize GRC operations.

You have a foundation in security governance frameworks (ISO, NIST, SOC 2, etc.), combined with practical experience in AI governance, AI risk management, and automation-driven GRC practices.

This is a remote position in the USA. You will report to the Manager of Security Governance.

#LI-Remote

AI & Security Governance

• Manage the implementation and continuous improvement of AI and Security Governance frameworks (e.g., ISO 27001, NIST CSF, NIST AI RMF, ISO/IEC 42001, COBIT).

• Maintain governance processes, and control libraries to address both traditional security risks and AI/ML-specific risks.

• Ensure AI-related controls are mapped, monitored, and traceable in ServiceNow GRC (Policy & Compliance module).

• Help develop an integrated AI + Security GRC strategy, ensuring risk, compliance, and audit functions reflect AI system considerations.

• Collaborate with Security Architecture, Risk, Compliance, Data Science, and Engineering teams to embed responsible AI practices into design, development, and deployment lifecycles.

AI Risk & Responsible AI Practices

• Assess risks associated with AI/ML systems (bias, explainability, robustness, regulatory compliance).

• Establish governance mechanisms for AI system lifecycle management, including documentation, accountability, and impact assessments.

• Advocate for ethical AI principles and contribute to internal awareness, policies, and training on AI risk and governance.

Governance Operations and Automation

• Lead projects to automate AI and security governance processes, such as continuous control monitoring, audit readiness, and compliance reporting.

• Use AI and automation tools to improve workflows in governance, including exception handling, risk metrics, and policy tracking.

• Maintain and expand ServiceNow GRC modules, optimizing them through automation and AI capabilities.

Collaboration

• • Be an important governance liaison across Security, Legal, Risk, Compliance, Engineering, and Data/AI teams.

  • Facilitate cross-team collaboration using Slack, Jira, and Confluence for structured documentation and workflows.

  • Work with leadership to ensure AI governance aligns with our goals, regulatory requirements, and industry best practices.

• Bachelor's degree in Information Security, Computer Science, Data Science, AI Ethics, or a related field.

• 5+ years of experience in security governance, AI governance, or GRC operations.

• Hands-on experience with ServiceNow GRC (Policy & Compliance modules).

• Knowledge of governance frameworks (ISO 27001, NIST CSF, NIST AI RMF, ISO/IEC 42001, COBIT).

• Understanding of AI/automation systems, AI risks, and their governance outcomes.

• Familiarity with automated governance workflows and compliance tools.

• Certification or training in AI governance, AI ethics, or AI risk frameworks (e.g., ISO/IEC 42001, NIST AI RMF).

• Certification in ServiceNow GRC or similar governance platforms.

AI is embedded in our workflows, decision-making, and products.  Success here requires embracing AI as an essential capability.

• You’ll bring experience using AI and AI-related technologies, ready to thrive here.

• You’ll apply AI every day to business challenges - improving efficiency, contributing solutions, and driving results for your team, our company, and our customers.

• You’ll grow with AI by staying curious about new trends and best practices, and by sharing what you learn so others can benefit too.

Total Rewards 

In addition to a great compensation package, paid time off, and paid parental leave, many Avalara employees are eligible for bonuses. 

Health & Wellness 
Benefits vary by location but generally include private medical, life, and disability insurance. 

Inclusive culture and diversity 
Avalara strongly supports diversity, equity, and inclusion, and is committed to integrating them into our business practices and our organizational culture. We also have a total of 8 employee-run resource groups, each with senior leadership and exec sponsorship. 

We’re defining the relationship between tax and tech.

We’ve already built an industry-leading cloud compliance platform, processing over 54 billion customer API calls and over 6.6 million tax returns a year. Our growth is real - we're a billion dollar business - and we’re not slowing down until we’ve achieved our mission - to be part of every transaction in the world.

We’re bright, innovative, and disruptive, like the orange we love to wear. It captures our quirky spirit and optimistic mindset. It shows off the culture we’ve designed, that empowers our people to win. We’ve been different from day one. Join us, and your career will be too.

We’re An Equal Opportunity Employer

Supporting diversity and inclusion is a cornerstone of our company — we don’t want people to fit into our culture, but to enrich it. All qualified candidates will receive consideration for employment without regard to race, color, creed, religion, age, gender, national orientation, disability, sexual orientation, US Veteran status, or any other factor protected by law. If you require any reasonable adjustments during the recruitment process, please let us know.