134 applicants

Company

Lattice · 2 days ago

Senior Product Security Engineer

New York, NY

Full-time

Remote

Senior Level

$166K/yr - $208K/yr

Maximize your interview chances

Enterprise ApplicationsHuman Resources

H1B Sponsor Likely

Insider Connection @Lattice

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Mentor and advise product development teams in the area of application security

Assist teams in reproducing, triaging, and addressing application security vulnerabilities

Assist in the implementation of security processes and automated tooling that prevent classes of security issues

Design and implement Typescript code libraries and patterns to improve application security

Perform security-focused code reviews

Work with infrastructure teams to ensure our systems are secure

Support the bug bounty program

Evaluate tools, from SAST/DAST to cloud security analysis tooling, among others

Lead application security reviews and threat modeling, including code review and dynamic testing

Help develop security training and socialize the material with product development teams

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

JavascriptTypescriptSecure coding practicesPythonRubyStatic analysis toolsDynamic analysis toolsPenetration testing toolsOWASP Top 10Security librariesSecurity controlsSecurity flawsContainerizationAWSAI/LLMsDockerKubernetesGraphQLCollaboration skills

Required

Software development experience, ideally with Javascript/Typescript, or another programming language such as Python or Ruby

Familiarity with secure coding practices

Familiarity with security tools and libraries such as static/dynamic analysis tools and penetration testing tools

Familiarity with and ability to explain common security flaws and ways to address them (e.g. OWASP Top 10)

Strong understanding and experience with common security libraries, security controls, and common security flaws

Strong communication and collaboration skills

Preferred

Familiarity with AI/LLMs for enhancing code quality and automating security analysis.

Familiarity with containerization (Docker, containerd, etc) and Kubernetes

Experience developing and operating cloud systems in AWS

Experience with GraphQL

Benefits

Medical insurance

Dental insurance

Vision insurance

Life, AD&D, and Disability Insurance

Emergency Weather Support

Wellness Apps

Paid Parental Leave

Paid Time off inclusive of holidays and sick time

Commuter & Parking Accounts

Lunches in the Office

Workplace Amenities Stipend

Internet and Phone Stipend

One time WFH Office Set-Up Stipend

401(k) retirement plan

Financial Planning

Learning & Development Budget

Sabbatical Program

Invest in Your People Fund

Company

Lattice

Glassdoor

3.3

Lattice is a people success platform that help business leaders develop engaged, high-performing employees, and winning cultures.

Founded in 2015

San Francisco, California, USA

501-1000 employees

http://www.lattice.com

H1B Sponsorship

Lattice has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (1)

2022 (1)

2021 (3)

2020 (5)