Network Security Software Engineer

🕒 Maio 28

Candidatar-se

Encontrar Vagas Remotas Similares

Receber Emails de Vagas Remotas

📊 Verifique sua pontuação de currículo para esta vaga

Melhore suas chances de conseguir uma entrevista verificando sua pontuação de currículo antes de se candidatar.

Enviar Currículo

Lumin Digital

SiteLinkedInTodas as Vagas

51 - 200 funcionários

💳 Fintech

🤝 B2B

☁️ SaaS

Fintech • B2B • SaaS

Lumin Digital é uma empresa especializada em fornecer soluções de banco digital de próxima geração para cooperativas de crédito e bancos. Sua plataforma oferece uma ampla gama de serviços, incluindo soluções bancárias de varejo e comerciais, abertura de conta digital e ferramentas para aprimorar o engajamento do usuário e a eficiência operacional. Com foco em inovação e tecnologia de ponta, a Lumin Digital aproveita a inteligência artificial e recursos robustos de segurança para oferecer serviços nativos em nuvem sem interrupções, com tempo de atividade quase perfeito. A empresa é conhecida por impulsionar o crescimento dos negócios e a redução de custos para instituições financeiras, adaptando-se a novas tecnologias e oferecendo uma experiência de usuário aprimorada.

Descrição

• Own the architecture, implementation, and continuous improvement of Lumin’s network security program across cloud, SD-WAN, and ZTNA layers—designing identity-aware, policy-driven controls that secure both human and machine (agent) identities. • Design and deliver fully automated, end-to-end network security change management pipelines that eliminate manual toil, accelerate change velocity, and maintain audit-ready evidence at every step. • Build and operate real-time network telemetry, monitoring, and alerting systems that provide deep visibility into network activity — integrating threat intelligence feeds, cloud connectivity data, and asset inventories into a unified, automated network defense posture. • Engineer production-grade tooling and services—including firewall rule lifecycle management, policy drift detection, configuration compliance validation, and telemetry enrichment—using modern backend languages (Python strongly preferred) and infrastructure-as-code. • Manage and tune network-layer detection capabilities — including IDS/IPS signatures, firewall rules, and WAF configuration — to ensure high-fidelity signals for SOC consumption. • Operate at the leading edge of AI-assisted development: write precise engineering specifications, direct AI coding agents (e.g., Claude Code, Cursor), and review/validate generated output to build secure, lights-off agentic pipelines that the broader team can learn from. • Build and maintain API integrations across the network security technology stack (e.g., Cloudflare, Zscaler, cloud-native controls) with reliability, observability, and audit-readiness designed in from day one. • Support compliance audit and assessment activities — including evidence collection, control testing, and auditor walkthroughs for network security domains; maintain an accurate network diagram inventory documenting topology, segmentation boundaries, and data flows. • Partner with the Security Operations Center, SRE, and IT to ensure network security controls integrate cleanly with existing infrastructure pipelines, CI/CD workflows, and incident response processes; participate in security architecture reviews and contribute to runbook development and operational documentation—raising the network security bar across the engineering organization. • Perform other duties as assigned.

🎯 Requisitos

• Bachelor’s degree in Computer Science, Information Security, Network Engineering, or a related technical field, or equivalent combination of education and experience. • 5+ years of progressive experience in network security engineering, with a demonstrated track record of designing, automating, and operating network security controls in cloud-native or hybrid environments. • Substantive hands-on engineering experience: you write production code, build integrations, and ship tooling—not just policies and diagrams. • Direct experience with network security platforms such as Cloudflare (WAF, Workers, Rulesets, Terraform provider), Zscaler (ZIA, ZPA), Palo Alto, or equivalent tier-one solutions. • Experience in fintech, banking, payments, or other regulated financial services environments (PCI-DSS, SOC 2, ISO 27001) strongly preferred. • Experience with infrastructure-as-code (Terraform, CloudFormation) and CI/CD-driven infrastructure provisioning. • Deep expertise in network security fundamentals: firewall policy design, micro-segmentation, ZTNA, SD-WAN, DDoS mitigation, traffic analysis, DNS security, and certificate/PKI management. • Hands-on experience with agentic coding tools and workflows (Claude Code, Cursor, or equivalent)—or demonstrated eagerness and aptitude to adopt them as a primary development methodology. • Strong proficiency in at least one backend language (Python strongly preferred; Go or similar considered) with the ability to design and build production-grade APIs, automation frameworks, and integration platforms. • Thorough understanding of identity-aware network security—designing controls that authenticate and authorize not just users but services, workloads, and autonomous agents. • Demonstrated ability to write clear, precise engineering specifications and technical documentation; comfortable operating on a distributed, async-first team where written clarity drives outcomes. • Sound engineering judgment: able to evaluate AI-generated code for correctness, security implications, and maintainability; able to architect systems for reliability and observability. • Strong cross-functional communication skills: able to translate network security requirements into actionable engineering work and influence peers across Security, SRE, and Platform teams.

🏖️ Benefícios

• medical, dental, and vision insurance • a 401(k) with company match • flexible PTO plus 12 paid holidays • paid sick leave • paid parental and family leave • a lifestyle spending account • tuition reimbursement • a cell phone stipend