About the CompanyLucidworks is leading digital transformation for some of the world’s biggest retailers, financial services firms, manufacturers, and B2B commerce organizations. We believe that the core to a great digital experience starts with search and browse. Our Deep Learning technology captures user behavior and utilizes machine learning to connect people with the products, content, and information they need. Lucidworks believes in the power of diversity and inclusion to help us do our best work. We are an Equal Opportunity employer and welcome talent across a full range of backgrounds, orientation, origin, and identity in an inclusive and non-discriminatory way.About the RoleAs a Security Engineer on our Engineering team, you will play a key role in building and scaling secure systems across our product and infrastructure. You’ll collaborate closely with software engineers, cloud operations, and product teams to embed security into everything we build—from design and development to deployment and operations. You’ll help identify risks early, propose pragmatic mitigations, and champion secure practices across the engineering organization.This is a hands-on, engineering-focused role where your work will directly impact the safety and resilience of the systems our customers rely on every day. This is a fully remote role open to candidates based in Latin America, South America, or the Caribbean.ResponsibilitiesDevelop and maintain Java-based applications, features, and updates with secure-by-default coding practicesMake targeted updates to the Fusion codebase to address vulnerabilities and improve system resilienceReview code and designs for security risks, providing actionable feedback to peersImplement tools and processes to detect and prevent vulnerabilities in code, dependencies, and infrastructurePartner with product and engineering teams to design secure features and functionality from the startCollaborate with DevOps/Cloud Operations to improve CI/CD pipelines, secrets management, and infrastructure hardening (bonus if you can contribute directly)Assess CVEs and security vulnerabilities in Java applications and dependencies, identifying appropriate mitigation strategiesStay up to date on secure coding techniques, emerging threats, and Java ecosystem security toolsShare knowledge and mentor teammates on secure development practicesCommunicate risks, trade-offs, and solutions to both technical and non-technical audiencesAll other duties as assignedSkills & QualificationsBachelor’s degree in Computer Science, Engineering, Cybersecurity, or related field preferred5+ years of professional software engineering experience, with strong Java expertiseSolid understanding of secure coding practices and software security fundamentalsExperience building and securing cloud-native applications (AWS, GCP, or Azure) and working with KubernetesFamiliarity with web and API security concepts (e.g., OWASP Top 10, authentication, authorization, input validation)Proficiency in Java plus experience with another programming or scripting language (e.g., Python, Go, JavaScript)Experience with static/dynamic analysis tools and/or container securityBonus: experience with DevOps practices, CI/CD pipelines, and cloud infrastructure securityPreferred certifications include CISSP, OSCP, or cloud security credentials (e.g., Certified Kubernetes Security Specialist (CKS))Familiarity with SaaS environments and tools such as Okta, Google Workspace, Slack, and GitHubClosing DescriptionLucidworks believes in the power of diversity and inclusion to help us do our best work. We are an Equal Opportunity employer and welcome talent across a full range of backgrounds, orientation, origin, and identity in an inclusive and non-discriminatory way. Applicants receive consideration based on the relevant talents, skills, and experiences they offer to our company.Thank you for your interest and we look forward to learning more about you.Note to third party recruitersWe appreciate your interest in our job opportunities. However, we kindly request that third-party recruiters and staffing agencies refrain from contacting us regarding these positions. We prefer to work directly with candidates and do not accept unsolicited resumes or candidate referrals from third-party recruiters or agencies. Unsolicited resumes and referrals will become the property of Lucidworks, and no fee will be paid should we hire a candidate whose resume was sent unsolicited.AI DisclosureWe may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
