Security Engineer: App Sec Lead jobs in United States
cer-icon
Apply on Employer Site
company-logo

Latent · 1 month ago

Security Engineer: App Sec Lead

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level

Latent is focused on building core infrastructure for clinical AI in American healthcare. They are seeking an experienced application security engineer to develop a security program from the ground up, collaborating closely with the engineering team to ensure secure coding practices and processes are implemented.

Health CareSaaSSoftware
badNo H1Bnote

Responsibilities

Choosing the right App Sec tools for our environment to make code secure before it is shipped and working with engineering to role them out widely
Create and mature processes around core pillars of Latent’s security program: vulnerability management, architecture reviews, pentesting, and threat modeling
Doing code reviews and even a little bug fixing yourself (we are a startup after all)
Helping build and POC new secure ways of writing code (validation libraries, improvements to authentication/authorization practices, encryption SDKs for developers)
Helping re-imagine permissioning and authorization for users of the Latent platform
Working alongside engineers to balance business requirements with the right security controls
Creating a mature pentesting and/or bug bounty program to validate production code is secure
Bringing security checks and tooling to the places that developers work (AI-based IDEs, CI/CD, ect..)

Qualification

Application Security ProgramThreat ModelingArchitecture ReviewsWeb Security VulnerabilitiesNodeJSTypescriptPythonVulnerability ManagementAccess ManagementAuthorization SystemsSecurity DetectionHIPAA Compliance

Required

Experience creating, building, or scaling a hands-on application security program in an organization that is cloud first
Primary Coding Language: Javascript (NodeJS/Typescript) and Python
Experience doing threat modeling and architecture reviews
Experience working with engineering and technical leadership to build security processes like vulnerability management
Deep understanding of web and api-based security vulnerabilities (how to spot them, how to fix them, and what patterns need to be created to counter them)
Experience architecting access management and authorization systems

Preferred

You dabble in other areas of security (Cloud, IT, GRC etc.), have a little bit of knowhow in security detection and response, or have worked in a HIPAA-compliant environment

Company

Latent

twittertwitter
company-logo
Latent develops medical language models to reduce healthcare operational costs.
dateFounded in 2022
location
San Francisco, California, USA
people-size11-50 employees
web-link
https://latenthealth.com

Funding

Current Stage
Early Stage
Total Funding
$13.5M
Key Investors
Y Combinator
2024-09-11Seed· $13M
2023-04-05Pre Seed· $0.5M

Leadership Team

leader-logo
Sriram Somasundaram
Co-Founder
linkedin
leader-logo
Rishabh Jain
Founder
linkedin

Recent News

New Orleans CityBusiness
Ochsner Health expands AI partnership for faster meds
2025-06-21
Google Patent
Securing a neural network runtime engine
2025-04-02
Google Patent
Neural network optimization using knowledge representations
2024-11-20
Company data provided by crunchbase