✦ Luna Orbit — Cybersecurity

Product Security Engineer

at Lattice

📍 Remote - Canada Remote Posted April 08, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Full-Time
Experience mid
Exp. Years 1–3+ years
Category Cybersecurity

About this role

Product Security Engineer at Lattice focused on improving security of applications and services, partnering with engineering to remediate issues, and integrating security tooling and threat modeling into the development lifecycle in an AWS-based environment.

Key Responsibilities

  • Collaborate with engineering to improve security of applications and services
  • Identify, triage, and remediate security issues
  • Participate in security reviews and threat modeling
  • Perform security-focused code reviews
  • Contribute to secure-by-default patterns, libraries, and tooling

Technical Overview

Hands-on security while writing code in JavaScript/TypeScript (or Python/Ruby); implementing SAST/DAST and dependency scanning; AWS-based environments; threat modeling and secure coding practices; AI/LLM security considerations.

Ideal Candidate

The ideal candidate is a security-focused software engineer with 1-3+ years in product/security, hands-on experience with JavaScript/TypeScript, and familiarity with AWS and OWASP Top 10. They should be comfortable with threat modeling, SAST/DAST, and security tooling in cloud-native environments, and capable of collaborating with engineering teams.

Must-Have Skills

1–3+ years in product securityapplication securityor software engineeringExperience writing and maintaining code in JavaScript/TypeScript (or Python or Ruby)Familiarity with OWASP Top 10Exposure to security testing tools (SASTDASTdependency scanning)Experience working in or with cloud environments (AWS or similar)Ability to identify common security risks and suggest practical mitigationsUnderstanding of secure coding practices and basic security controls

Nice-to-Have Skills

Next.jsNestJSGraphQLContainerization or KubernetesAI/LLM securityExperience with modern web architectures

Required Skills

1–3+ years in product securityapplication securityor software engineeringJavaScript/TypeScript (or Python/Ruby)OWASP Top 10SASTDASTdependency scanningAWSthreat modelingsecure coding practicessecurity tooling

Hard Skills

JavaScriptTypeScriptPythonRubyOWASP Top 10SASTDASTdependency scanningAmazon Web ServicesAWSthreat modelingsecure coding practicessecurity toolingprompt injectiondata leakageunsafe output handlingNext.jsNestJSGraphQLDockerKubernetesAI/LLM securitycloud security posture

Soft Skills

Strong communicationCollaborationOwnershipQuick learnerWillingness to ask questionsTeam-oriented

Industry & Role

Industry SaaS
Job Function Develop and implement security enhancements for Lattice's software platform in cloud environments.
Role Subtype Security Engineer
Tech Domains Amazon Web Services, Python, JavaScript, TypeScript, GraphQL, Docker, Kubernetes, SQL / PostgreSQL, React, Node.js

Keywords for Your Resume

Product Security Engineersecurity engineerJavaScriptTypeScriptPythonRubyOWASP Top 10SASTDASTdependency scanningAWSAmazon Web Servicesthreat modelingsecure coding practicessecurity toolingprompt injectiondata leakageunsafe output handlingNext.jsNestJSGraphQLDockerKubernetesAI/LLM securitycloud security posture

Deal Breakers

Lack of experience with JavaScript/TypeScript and OWASP Top 10, No experience with AWS, Unwilling to work on security tooling and threat modeling

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile