Lumin Digital
Fintech
NetworkSecuritySoftwareEngineer
Neural analysis suggests this role is
optimal for Senior candidates.
“Network Security Software Engineer at Lumin Digital. Skills: Network Security, Automation, Cloud-native, Python. Own network security architecture, implementation, and improvement. Design automated network security change management pipelines”
What You'll Achieve.
Turn around security changes faster; Go deeper than port and protocol; Extend coverage to agents; Eliminate manual toil; Accelerate change velocity; Maintain audit-ready evidence; Provide deep visibility into network activity; Ensure high-fidelity signals for SOC consumption; Build secure, lights-off agentic pipelines; Design with reliability, observability, and audit-readiness
Industry & Context.
Architect systems for reliability and observability; Evaluate AI-generated code for correctness and security
Ability to occasionally lift/move up to 25 pounds, Minimal travel (12 days or less per year)
What They're Looking For.
Must Have
5+ years of progressive experience in network security engineering, Substantive hands-on engineering experience, Direct experience with network security platforms such as Cloudflare (WAF, Workers, Rulesets, Terraform provider), Zscaler (ZIA, ZPA), Palo Alto, or equivalent tier-one solutions, Experience with infrastructure-as-code (Terraform, CloudFormation) and CI/CD-driven infrastructure provisioning, Deep expertise in network security fundamentals: firewall policy design, micro-segmentation, ZTNA, SD-WAN, DDoS mitigation, traffic analysis, DNS security, and certificate/PKI management, Hands-on experience with agentic coding tools and workflows (Claude Code, Cursor, or equivalent)—or demonstrated eagerness and aptitude to adopt them as a primary development methodology, proficiency in at least one backend language (Python strongly Go or similar considered) with the ability to design and build production-grade APIs, automation frameworks, and integration platforms, Thorough understanding of identity-aware network security—designing controls that authenticate and authorize not just users but services, workloads, and autonomous agents, Demonstrated ability to write clear, precise engineering specifications and technical, comfortable operating on a distributed, async-first team where written clarity drives outcomes, Sound engineering judgment: able to evaluate AI-generated code for correctness, security implications, and able to architect systems for reliability and observability, cross-functional communication skills: able to translate network security requirements into actionable engineering work and influence peers across Security, SRE, and Platform teams
Nice to Have
CCNP Security, PCNSE (Palo Alto), AWS Solutions Architect, Cloudflare certifications, or equivalent, Experience in fintech, banking, payments, or other regulated financial services environments (PCI-DSS, SOC 2, ISO 27001) strongly preferred, Experience building real-time telemetry, monitoring, and threat detection pipelines for network traffic, Familiarity with agent-to-agent authentication, service mesh architectures, and securing AI/ML workload communications, Experience integrating threat intelligence feeds and automating indicator-of-compromise enrichment into network defense workflows
What You'll Do.
Own network security architecture
Design automated network security change management pipelines
Build real-time network telemetry
Engineer production-grade tooling and services
Manage and tune network-layer detection capabilities
Operate AI-assisted development workflows
Build and maintain API integrations
Support compliance audit and assessment activities
Maintain network diagram inventory
Partner with Security Operations Center
Participate in security architecture reviews
Contribute to runbook development
Raise network security bar across engineering
How You'll Work.
Team & Collaboration
Partner with Security Operations Center, SRE, and IT; Participate in security architecture reviews; Influence peers across Security, SRE, and Platform teams
Communication Scope
Cross-functional communication; Translate network security requirements; Written clarity
Full Job Description
## Description Basic Function Lumin Digital is standing up a dedicated Network Security function within its Risk Engineering group to protect a growing product suite that handles sensitive financial data across multiple product lines. This role exists because the landscape has shifted: in a cloud-native, infrastructure-as-code environment, network security is no longer about managing router ACLs—it is about designing identity-aware policy enforcement, automating end-to-end change management, and building real-time visibility into network activity across both workforce and hosted contexts. As the Network Security Software Engineer, you will be a domain authority who breaks network security out of the existing Security Engineering and SOC functions, building the specialization from the ground up. You will architect and deliver automated, lights-off pipelines—using agentic development practices and tools like Claude Code—that turn around security changes faster, go deeper than port and protocol in our defense-in-depth story, and extend coverage to the agents our teams create, not just the people who create them. We are looking for a senior practitioner who will teach us what great network security looks like in a modern, highly-automated fintech environment—not someone who needs to be taught. Essential Functions and Responsibilities: Own the architecture, implementation, and continuous improvement of Lumin’s network security program across cloud, SD-WAN, and ZTNA layers—designing identity-aware, policy-driven controls that secure both human and machine (agent) identities. Design and deliver fully automated, end-to-end network security change management pipelines that eliminate manual toil, accelerate change velocity, and maintain audit-ready evidence at every step. Build and operate real-time network telemetry, monitoring, and alerting systems that provide deep visibility into network activity — integrating threat intelligence feeds, cloud connectivity data, and asset
Applying for this Network Security Software Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Lever
- Lever uses a streamlined one-page form — apply in under 5 minutes.
- LinkedIn import works well; review parsed data before submitting.
- The cover letter field is optional but visible to reviewers — use it to differentiate.
- Referral codes from employees can significantly boost visibility of your application.
ANONYMOUS · UNFILTERED
What do employees actually say about Lumin Digital?
Real rants from real employees. Read before you apply.