Software Engineer, Product Security

Lucidworks

Lucidworks

Software Engineering, Product
Mexico City, Mexico · Remote
Posted on Jul 8, 2025
Lucidworks is leading digital transformation for some of the world's biggest retailers, financial services firms, manufacturers, and B2B commerce organizations. We believe that the core to a great digital experience starts with search and browse. Our Deep Learning technology captures user behavior and utilizes machine learning to connect people with the products, content, and information they need. Brands including American Airlines, Lenovo, Red Hat, and Cisco Systems rely on Lucidworks' suite of products to power commerce, customer service, and workplace applications that delight customers and empower employees. Lucidworks believes in the power of diversity and inclusion to help us do our best work. We are an Equal Opportunity employer and welcome talent across a full range of backgrounds, orientation, origin, and identity in an inclusive and non-discriminatory way.
About the Role
As a Security Engineer on our Engineering team, you will play a key role in building and scaling secure systems across our product and infrastructure. You’ll collaborate closely with software engineers, cloud operations, and product teams to embed security into everything we build—from design and development to deployment and operations. You’ll help identify risks early, propose pragmatic mitigations, and champion secure practices across the engineering organization.
This is a hands-on, engineering-focused role where your work will directly impact the safety and resilience of the systems our customers rely on every day. This is a fully remote role open to candidates based in Latin America, South America, or the Caribbean.

Responsibilities

  • Develop and maintain Java-based applications, features, and updates with secure-by-default coding practices
  • Make targeted updates to the Fusion codebase to address vulnerabilities and improve system resilience
  • Review code and designs for security risks, providing actionable feedback to peers
  • Implement tools and processes to detect and prevent vulnerabilities in code, dependencies, and infrastructure
  • Partner with product and engineering teams to design secure features and functionality from the start
  • Collaborate with DevOps/Cloud Operations to improve CI/CD pipelines, secrets management, and infrastructure hardening (bonus if you can contribute directly)
  • Assess CVEs and security vulnerabilities in Java applications and dependencies, identifying appropriate mitigation strategies
  • Stay up to date on secure coding techniques, emerging threats, and Java ecosystem security tools
  • Share knowledge and mentor teammates on secure development practices
  • Communicate risks, trade-offs, and solutions to both technical and non-technical audiences
  • All other duties as assigned

Skills & Qualifications

  • Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or related field preferred
  • 5+ years of professional software engineering experience, with strong Java expertise
  • Solid understanding of secure coding practices and software security fundamentals
  • Experience building and securing cloud-native applications (AWS, GCP, or Azure) and working with Kubernetes
  • Familiarity with web and API security concepts (e.g., OWASP Top 10, authentication, authorization, input validation)
  • Proficiency in Java plus experience with another programming or scripting language (e.g., Python, Go, JavaScript)
  • Experience with static/dynamic analysis tools and/or container security
  • Bonus: experience with DevOps practices, CI/CD pipelines, and cloud infrastructure security
  • Preferred certifications include CISSP, OSCP, or cloud security credentials (e.g., Certified Kubernetes Security Specialist (CKS))
  • Familiarity with SaaS environments and tools such as Okta, Google Workspace, Slack, and GitHub
Lucidworks believes in the power of diversity and inclusion to help us do our best work. We are an Equal Opportunity employer and welcome talent across a full range of backgrounds, orientation, origin, and identity in an inclusive and non-discriminatory way. Applicants receive consideration based on the relevant talents, skills, and experiences they offer to our company.
Thank you for your interest and we look forward to learning more about you.
Note to third party recruiters:
We appreciate your interest in our job opportunities. However, we kindly request that third-party recruiters and staffing agencies refrain from contacting us regarding these positions. We prefer to work directly with candidates and do not accept unsolicited resumes or candidate referrals from third-party recruiters or agencies. Unsolicited resumes and referrals will become the property of Lucidworks, and no fee will be paid should we hire a candidate whose resume was sent unsolicited.