About the job
About Us
Luminar Technologies, Inc. (Nasdaq: LAZR) is transforming automotive safety and autonomy by delivering the only lidar and associated software that meets the industry’s stringent performance, safety, and economic requirements. Luminar has rapidly gained over 50 industry partners, including a majority of the top global automotive OEMs. In 2020, Luminar signed the industry’s first production deal for autonomous consumer vehicles with Volvo Cars, which now expects to make Luminar’s technology part of the standard safety package on their next generation electric SUV. Additional customer wins include Mercedes, SAIC, Daimler Truck AG, Intel’s Mobileye, Pony.ai and Airbus UpNext. Founded in 2012, Luminar employs approximately 400 with offices in Palo Alto, Orlando, Colorado Springs, Detroit, Bangalore and Munich.
For more information, please visit www.luminartech.com
About The Role
Luminar Technologies is seeking an experienced technically hands-on Security Admin Engineer reporting to the Head of Security Operations, who can design, build, monitor and enforce the security infrastructure within a growing US public company. The ideal candidate should have extensive experience in designing security solutions which protect information from threats, ensuring business continuity and regulatory compliance by collaboratively working across the different functions in the organization. This is a first set of lead hires for this function, as we look to augment this function at Luminar, India. You will be part of a high cross-functional team and responsible for rapid prototyping and product development at Luminar.
Responsibilities
- Design, implement, and maintain the company's security infrastructure to ensure the security, confidentiality, integrity, and availability of company data and systems
- Design and implement a Unified Security and Observability Platform (USOP) architecture, including forwarders, indexers, and search heads, to meet the company's security and operational needs
- Configure and manage USOP applications, including security-focused applications, to support security use cases
- Develop and implement USOP data ingestion strategies to ensure relevant security data is being collected and stored in the platform
- Develop and maintain USOP dashboards, reports, and alerts to support security monitoring and incident response
- Analyze USOP data to identify security incidents and provide recommendations for improving the company's security posture
- Design and implement UEM, MDM, CNAPP, EDR, and ZTNA architectures, including osquery-based endpoint security platform, to meet the company's security and operational needs
- Configure and manage UEM, MDM, CNAPP, EDR, and ZTNA policies and rules to ensure that all endpoints are securely monitored and controlled
- Develop and implement UEM, MDM, CNAPP, EDR, and ZTNA data protection strategies to ensure sensitive data is protected from unauthorized access or exfiltration
- Develop and maintain USOP, UEM, MDM, CNAPP, EDR, and ZTNA dashboards, reports, and alerts to support security monitoring and incident response
- Analyze USOP, UEM, MDM, CNAPP, EDR, and ZTNA data to identify security incidents and provide recommendations for improving the company's security posture
- Work with cross-functional teams to identify security risks and vulnerabilities, and develop and implement strategies to mitigate them
- Deploy and configure the Company security tools suite to monitor and analyze network traffic and detect security incidents
- Analyze security data generated by USOP, UEM, MDM, CNAPP, EDR, and ZTNA to identify security incidents, troubleshoot issues, and recommend improvements to security policies and procedures
- Develop and maintain security policies, procedures, and standards for the use of USOP, UEM, MDM, CNAPP, EDR, and ZTNA to ensure they are in compliance with applicable regulations and industry best practices
- Perform security audits, vulnerability assessments, and penetration testing on company systems and networks to identify potential security risks and vulnerabilities
- Collaborate with other members of the security team to develop incident response plans and procedures, and participate in incident response activities when necessary
- Stay up-to-date on the latest security trends, technologies, and best practices, and continuously assess and improve the company's security posture
- Participate in on-call rotation to provide 24x7 support for critical security incidents.
Minimum Qualifications
- Bachelor’s Degree in computer science, computer engineering, cybersecurity, or a related discipline (or similar relevant technical hands-on work experience)
- 7+ years of relevant work experience
- Experience and documented technical proficiency designing, building, and maintaining enterprise-level security infrastructure and tools
- Strong documented technical proficiency of security concepts and principles, including network security, endpoint security, and data protection
- Deep experience designing and implementing USOP architecture, including forwarders, indexers, and search heads
- Documented technical expertise configuring and managing ZTNA policies and rules to ensure that all network traffic is securely inspected and controlled
- Experience and documented technical proficiency with industry leading UEM, MDM, CNAPP, EDR endpoint security platforms and the osquery query language
- Familiarity with security best practices, industry standards, and regulatory requirements (e.g., PCI, HIPAA, SOC 2, ISO 27001)
- Deep domain expertise with cloud security concepts and cloud-native security tools
- Strong problem-solving and troubleshooting skills, with the ability to diagnose and resolve complex technical issues
- Ability and willingness to work in a 24/7 on-call capacity and across global time zones
- Highly self-motivated and directed with attention to detail
- Experience working in a team-oriented, collaborative environment
- Excellent written and oral communication and time management skills
- Native-level professional English fluency required, additional language ability a plus
Preferred Qualifications
- 10+ years of experience in security engineering role with documented continuously increasing levels of responsibility, including experience with industry leading USOP, UEM, MDM, CNAPP, EDR, and ZTNA platforms and tools
- Advanced knowledge of USOP architecture, search language, and advanced features such as machine learning
- Extensive advanced experience and technical proficiency with other security tools, such as SIEMs, EDR platforms, and vulnerability scanners
- Extensive advanced experience and technical proficiency with security automation and orchestration tools (e.g., Phantom, Ansible)
- Deep familiarity with DevSecOps and agile methodologies
- Experience supporting fast moving or startup business organizations
- Experience in Automotive, Finance, or High-Tech Industry a plus
- Experience with autonomous vehicles or connected car a plus