1

Wazuh Jobs (NOW HIRING)

Detection-as-code in Splunk SPL / Wazuh rules / SQL that turns log data into actionable alerts. * n8n workflows for simpler integrations where a full service isn't justified - you'll pick the right ...

Sr. DevSecOps Engineer

San Diego, CA · On-site

$121K - $166K/yr

Deploy/tune Wazuh agents across hosts and workloads. * Configure pipelines from Wazuh Elastic Tines. * Write and maintain Elastic SIEM detection rules. SOAR Automation & AI SOC Buildout * Develop ...

Detection-as-code in Splunk SPL / Wazuh rules / SQL that turns log data into actionable alerts. * n8n workflows for simpler integrations where a full service isn't justified - you'll pick the right ...

Security Site Reliability Engineer

Pleasant Grove, UT · On-site

$51.50 - $68.25/hr

Support our Wazuh SIEM - maintain and extend cloud log ingestion (CloudTrail, VPC Flow Logs, GCP Audit Logs) and help tune detection rules after initial setup by a detection engineering contractor

Security Site Reliability Engineer

Pleasant Grove, UT · On-site

$51.50 - $68.25/hr

Support our Wazuh SIEM -- maintain and extend cloud log ingestion (CloudTrail, VPC Flow Logs, GCP Audit Logs) and help tune detection rules after initial setup by a detection engineering contractor

Apply Early

Cyber Security Auditor

Albuquerque, NM · On-site

$101K - $137K/yr

... Wazuh, Elastic Stack, Splunk, Graylog • Support cybersecurity awareness and best practices across the company Required Qualifications • Bachelor's degree in Cybersecurity, IT, a related field, or ...

Cyber Security Auditor

Albuquerque, NM · On-site

$101K - $137K/yr

... Wazuh, Elastic Stack, Splunk, Graylog • Support cybersecurity awareness and best practices across the company Required Qualifications • Bachelor's degree in Cybersecurity, IT, a related field, or ...

Monitoring systems: e.g., Wazuh, Prometheus/Grafana/AlertManager * Asterisk/Twilio phone systems * HP managed switches/APs/RADIUS * Git/GitHub * Terraform/Ansible Leadership Experience You're a ...

Apply Early

Site Reliability Engineer - Cybersecurity

Palo Alto, CA · On-site

$67 - $89.25/hr

... Wazuh. • Hands-on experience with security scanning tools (Semgrep, Trivy, Falco). • Proactive mindset with strong ownership and problem-solving skills. • Excellent critical thinking and ...

Responsibilities : • Setting up Monitoring tools etc as needed. • Monitor security alerts and events using SIEM tools (SPLUNK, Wazuh) and other security monitoring systems. • Conduct initial ...

next page

Showing results 1-20

Wazuh information

What are the key skills and qualifications needed to thrive as a Wazuh Security Analyst, and why are they important?

To thrive as a Wazuh Security Analyst, you need a solid background in cybersecurity, knowledge of intrusion detection systems, log analysis, and often a degree or certification in information security. Familiarity with the Wazuh platform, Linux systems, SIEM solutions, and scripting languages like Python or Bash is typically required. Strong analytical thinking, problem-solving abilities, and effective communication skills help you investigate threats and collaborate with IT teams. These skills are crucial for proactively identifying vulnerabilities, responding to incidents quickly, and maintaining robust organizational security.

What are Wazuh engineers?

Wazuh engineers are IT professionals who specialize in deploying, configuring, and managing Wazuh, an open-source security monitoring and threat detection platform. They are responsible for setting up Wazuh to collect and analyze security data, detect vulnerabilities, and respond to security incidents. Their role often includes integrating Wazuh with other security tools, maintaining compliance, and providing support and training to other team members. Wazuh engineers play a crucial role in enhancing an organization's cybersecurity posture.

What are the typical responsibilities of a Wazuh engineer during a security incident?

A Wazuh engineer plays a crucial role during security incidents by monitoring real-time alerts, analyzing logs, and correlating events to identify potential threats. They are responsible for tuning detection rules to reduce false positives, investigating suspicious activities, and collaborating closely with IT and security teams to coordinate incident response. Additionally, Wazuh engineers often document incident findings and propose improvements to enhance the organization's security posture. This role requires a proactive approach and effective communication skills to ensure a swift and coordinated response.
More about Wazuh jobs
What cities are hiring for Wazuh jobs? Cities with the most Wazuh job openings:
What states have the most Wazuh jobs? States with the most job openings for Wazuh jobs include:
Software Engineer, IT and Security

Software Engineer, IT and Security

Parachute Health

OR • Remote

Other

Medical, Dental, Vision, Retirement, PTO

Posted 4 days ago


Job description

About the Role

You'll be the dedicated software engineer embedded in Parachute Health's IT & Security team, writing the code that runs our internal operations. You'll build internal applications, automation services, and AI agents that replace manual work across identity, endpoint, cloud security, compliance, and incident response - in an environment governed by HIPAA, SOC 1, SOC 2, and HITRUST.

What you'll build

Concrete projects on the roadmap for your first year:

  • A self-service access portal (React + Node.js + Okta API) that lets employees request app and AWS access, routes for approval, and provisions automatically.
  • An automated user lifecycle service (Python) that listens to HR webhooks and orchestrates Okta, AWS, GitHub, and SaaS provisioning/deprovisioning end-to-end.
  • An audit evidence collection service (Python) that pulls evidence from 30+ systems (AWS, GitHub, Okta, Drata, Splunk) on a schedule and writes structured evidence into our compliance platform.
  • An alert enrichment pipeline (Python) that takes raw security alerts, queries context from logs/CMDB/HR systems, and writes back enriched, triaged tickets.
  • AI agents and MCP servers (Python, TypeScript) - agents built on the Anthropic API that safely read from and act on our internal systems: running access reviews, drafting compliance evidence, triaging tickets.
  • Detection-as-code in Splunk SPL / Wazuh rules / SQL that turns log data into actionable alerts.
  • n8n workflows for simpler integrations where a full service isn't justified - you'll pick the right tool for the job.
Tech stack
  • Languages: Python (primary), TypeScript/Node.js, SQL, Bash
  • Cloud: AWS (Lambda, ECS, EKS, S3, RDS/Aurora, IAM, Secrets Manager), GCP (BigQuery)
  • Data: Redshift, BigQuery, Postgres
  • AI / agents: Anthropic API, Model Context Protocol (MCP), retrieval/embeddings, eval frameworks
  • IT & Security integrations: Okta, ZScaler, Splunk, Wazuh, Lacework, Drata, Datadog, GitHub, n8n
  • Deployment: GitHub Actions, ArgoCD, EKS (consumed via Parachute's existing platform)
  • Observability: Datadog, Splunk
Requirements
  • Minimum 2 years of professional software engineering experience in a production web environment.
  • Strong professional experience in Python or TypeScript/Node.js. Bonus if both.
  • Comfort writing SQL against real production datasets.
  • Hands-on experience with AWS (IAM, Lambda/ECS/EKS, S3, RDS) and Infrastructure-as-Code.
  • Experience integrating with REST/GraphQL APIs and webhooks across SaaS platforms.
  • Strong fundamentals: data structures, design patterns, testing, code reviews.
  • Security-first mindset: you think about least privilege, secrets handling, PHI exposure, and audit trails by default.
  • Working knowledge of at least one compliance framework - SOC 2, HITRUST, HIPAA, ISO 27001, or NIST.
  • Must reside in the U.S.
Nice to have
  • Experience building AI agents or LLM-powered tools in production - agent architectures, tool integration, MCP, retrieval-augmented generation, eval frameworks.
  • Experience driving AI adoption across a technical team (pairing, demos, reusable skills/plugins).
  • Familiarity with our stack: Okta, ZScaler, Splunk/Wazuh, Lacework, Drata, Datadog, n8n.
  • SIEM detection engineering (Splunk SPL, Wazuh rules, Sigma).
  • Experience with Kubernetes (EKS), GitOps (ArgoCD), or service mesh (Istio with OIDC/JWT).
  • Healthcare technology background - exposure to HIPAA, PHI handling, or DME workflows.
  • Security or cloud certifications (CISSP, CCSP, AWS Security Specialty, GCIH, OSCP).
  • Professional experience with Ruby on Rails (Parachute's primary product stack - useful for cross-team collaboration).
  • Experience as a technical lead bridging IT, Security, Engineering, and Compliance stakeholders.
What a typical week looks like
  • Code review, write, and ship - Python services, TypeScript tools, SQL queries, agent definitions.
  • Pair with security analysts and IT engineers to translate operational pain into shipped automation.
  • Design and build APIs, schedulers, and event-driven services that integrate across our SaaS stack.
  • Write tests, dashboards, and runbooks for everything you ship.
  • Participate in an on-call rotation for the IT/Security tooling you own (not customer-facing platform).
  • Sit in on architecture reviews and incident response.

Benefits

  • Medical, Dental, and Vision Coverage: Comprehensive plans with options for low-to-no-cost premiums.
  • Employer HSA Contribution: Company-funded contributions to your Health Savings Account.
  • 401(k) Retirement Plan
  • Equity Incentive Plan
  • Annual Company-Wide Bonus: Opportunity for up to 15% bonus based on company performance.
  • Remote-First Culture: We are remote-first with a dedicated NYC office and reimbursement options for co-working spaces.
  • Flexible Vacation Policy
  • Summer Fridays: 5 additional Fridays off during the summer (separate from PTO).
  • Home Office and Wellness Stipend
  • Monthly Internet Stipend
  • Annual Learning and Development Stipend

Base Salary Band (based on experience and level)

$80,000 - $120,000