At Lumenalta, we create impactful software solutions that drive innovation and transform businesses. Since 2000, we’ve partnered with visionary leaders to build cutting-edge tech, solve complex challenges, and deliver results faster through our elite teams and tech-driven approach. Join us in shaping the future of technology.
Experience Remote done Right. With over 20 years of remote experience, all 500+ staff are 100% remote, and we still grow vibrant relationships and provide exceptional opportunities for career growth while working with stellar clients on ambitious projects.
What You’ll Do
- Continuously monitor security alerts and system performance using:
- Wazuh, Beats, OpenSearch
- AWS GuardDuty, Security Hub, CloudWatch, CloudTrail Insights, X-Ray, AWS Config, Inspector, Shield
- Perform Level 1 triage: validate alerts, enrich context, and apply scripted/runbook fixes
- Lead Level 2 investigations: root cause analysis, log forensics, and trace diagnostics
- Maintain and tune detection rules, alarms, dashboards, and automated remediation workflows
- Follow structured playbooks and escalate high-severity or novel events to engineering or security leadership
- Document incidents, fixes, and escalations in JIRA Service Management
- Work collaboratively with DevOps teams on Terraform pipelines to ensure secure, monitored infrastructure
- Contribute to global 24×7 coverage via rotating shifts, adhering to Lumenalta’s SLAs and incident protocols
What You Bring
- 2–4 years in a SOC, security engineering, or site reliability role within an AWS environment
- Strong hands-on experience with:
- Open-source SIEM (Wazuh, Beats, OpenSearch)
- AWS monitoring & security tools: GuardDuty, Security Hub, CloudTrail, CloudWatch, X-Ray, Inspector, etc.
- Network and host-level security: WAF, VPC Flow Logs, EC2 hardening
- Familiarity with:
- Scripting (Python or Bash),
- Terraform workflows and CI/CD impacts on security monitoring,
- MITRE ATT&CK framework and SANS IR best practices
- Performance analysis for serverless and microservices environments
- Proficiency with JIRA and ITSM documentation
- AWS Security certification (preferred)
Who You Are
- Calm, focused, and methodical under pressure
- Communicates clearly and concisely in written incident reports and hand-offs
- Eager to follow structured runbooks and improve them over time
- Flexible and collaborative—able to work across time zones and with global teams
- Passionate about both security and reliability in modern cloud architectures
Lumenalta is committed to hiring exceptional talent from a wide variety of diverse backgrounds. If you share our values and enthusiasm for digital transformation, we encourage you to apply
What's it like to work at Lumenalta?
The application deadline is 5/31/25