Lumin Digital Cyber Security Engineer

October 16, 2020
San Ramon, CA
Job Type


Join the people helping people.

For people drawn to serving others through their work, PSCU is a place to thrive. We serve our credit union members best by taking care of each other first. How might you help us help you?

Serving as both a security professional for our corporate and our public cloud environments that host our financial services platforms, at Lumin Digital, a Cyber Security Engineer is responsible for:

  • Monitoring and evaluating threats to a cloud-hosted digital banking solution

  • Assessing applications, networks, and systems to identify vulnerabilities

  • Designing, implementing, supporting, and monitoring technical controls to protect people and sensitive data

  • Following industry standard practices to prepare for, identify, contain, eradicate, and recover from security incidents

  • Supporting risk management, compliance, and audit functions to measure and continuously improve the information assurance of environments

Essential Functions

Develop and improve monitoring, reporting, and alerting capabilities that allow for the security team to identify, prioritize, and address threats by using research, security tools, scripting, database queries, data manipulation, and reporting writing technical skills. Develop and maintain threat models to inform and prioritize the risk management activities of the security team. Use and maintain vulnerability scanning and penetration testing tools to quickly identify weaknesses across multiple environments and systems at scale. Collaborate with clients, auditors, vendors, and the internal security team to develop thorough assessment testing strategies and validate the security posture of multiple layers of environments, from low-level physical to high-level application layers. Investigate reported vulnerabilities and risks to qualify and confirm findings and follow established procedures to directly resolve or to assign remediation actions to other functional areas. Develop strategies, scripts, configurations, or other manual procedures to reduce security risks across cloud services, servers, network devices, and end-user endpoints. Design, deploy, and operate security solutions, including firewalls, intrusion detection, DLP tools, CASB’s, and AV/EDR systems, to design, deploy, and maintain configurations and policies that reduce security risks in automated virtual and containerized environments. Participate in or lead formalized security incident response procedures as part of a team, including all phases of the incident handling lifecycle, from preparation through lessons learned. Collect evidence of security program activities to satisfy client due diligence requests as well as support internal and external audit activities.


  • Bachelor’s Degree in Computer Science, Management Information Systems, Information Assurance, Information Security, Cybersecurity, or related field; or equivalent self-study in cybersecurity with demonstrated command of key concepts and technologies and proficiencies in digital forensics, incident response, secure application development, penetration testing, or other technical security risk management domains required.


  • Five (5) years of experience in a relevant technology domain, including security engineering, software engineering, information technology, systems administration, technical fieldwork, or information assurance required.

  • Two (2) years of demonstrated experience in identifying threats, finding and confirming vulnerabilities, and deploying controls or remediations to reduce security risks in a full-time capacity as a security analyst, security engineer, DevSecOps team member, or similar role required; or, practical certifications or demonstrated accomplishments in cyber range / CTF competitions that show ability and experience in identifying and handling security risks relevant to protecting a hosted digital banking environment required.

  • Experience with AWS, Linux, Kubernetes, Git, and scripting in Bash and Python desired.

Knowledge, Skills, and Abilities:

  • In-depth technical knowledge of cybersecurity tools, techniques, and procedures to identify and analyze threats and devise and monitor technology safeguards to protect sensitive assets.

  • Design skills and ability to implement security controls at the operating system, containerization, orchestration, and network levels, including with SELinux, auditd, sshd, iptables, syslog variants, Snort/Suricata, and Zeek.

  • Calm and serious attitude, technical aptitude, appropriate sense of urgency, and communication skills to effectively coordinate with internal team members to remediate vulnerabilities and reduce security risks.

  • Must be able to pass requisite background checks to be accepted as a PSCU employee with access to sensitive information.

  • Must have strong client orientation and demonstrate professional demeanor that earns the trust and respect of individuals inside and outside Lumin Digital.

  • Ability to prioritize tasks, exercise sound judgment and confidentiality with sensitive information

  • Good communication, interpersonal, and presentation skills

  • Ability to work remotely while maintaining a high level of productivity and effectiveness with limited supervision

  • Strong drive to fully understand threats and weaknesses, to continuously improve our posture, and to professionally develop in this quickly-changing career

All applications are reviewed by an AIRS Certified Diversity and Inclusion Recruiter. Learn more about our commitment to Diversity, Equity, and Inclusion HERE!

PSCU is an Equal Opportunity Employer. We consider applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status or membership in any other group protected by federal, state or local law.

PSCU is an Equal Opportunity Employer that complies with the laws and regulations set forth in the following "EEO is the Law" Poster and the "EEO is the Law" Poster Supplement. PSCU will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the legal duty to furnish information.

For positions based out of our Phoenix, Arizona location, PSCU is an E-Verify Employer. Please click here for the E-Verify Poster in English or Spanish. For information regarding your Right To Work, please click here for English or Spanish.

As an ongoing commitment to reasonably accommodate individuals with disabilities, PSCU has established alternative methods to complete the application process. Disabled applicants needing assistance are encouraged to submit resumes via our careers page submission button If further assistance is required.

Drop files here browse files ...

Related Jobs

Network Engineer (mid-level)   Sunnyvale, CA new
October 28, 2020
October 28, 2020