Senior Software Developer, Security and Privacy at Lightspeed Commerce
Lightspeed Commerce · Montreal, Canada · On-site
- Office in Montreal
Hi there! Thanks for stopping by đź‘‹
Are you actively looking for a new opportunity? Or just checking the market? Well… you might just be in the right place!
The Senior Engineer, Security and Privacy serves as a critical member of the Security Operations and Engineering team, embedding directly with product and engineering teams to champion and implement projects improving security and privacy by design. You will be a hands-on technical expert, writing and updating application code to address complex security challenges and proactively mitigate risks and vulnerabilities. This role is essential for accelerating the resolution of security and privacy issues, mentoring others to elevate the organization's overall security posture, and helping to guide the organization in aligning security with our strategic business goals.
What you’ll be doing:
- Work closely with Product & Technology (P&T) Development and SRE teams for focused periods to accelerate the resolution of Security & Privacy issues.
- Take a hands-on approach to writing new and updating existing application code to remediate vulnerabilities, address technical debt, and build new security and privacy features.
- Implement critical security initiatives such as merchant account protection, and vulnerability remediation, fraud and social engineering protections.
- Advance and develop the implementation of key privacy priorities, including enforcing best practices for data retention, anonymization, logging, etc.
- Assist in building data minimization strategies into the product design and developing secure data disposal mechanisms.
- Champion security and privacy best practices and proactive threat mitigation throughout the product development lifecycle.
- Partner with and mentor fellow security and product team members, fostering expertise in secure coding and privacy-enhancing technologies.
- Conduct regular risk assessments of applications and data.
- Collaborate with Product Managers, alongside the Security Architecture team and fellow Security and Privacy engineers, to guide the design and definition of new features, ensuring security and privacy are built in from the ground up.
- Evaluate designs and architectures for potential vulnerabilities, proposing risk mitigation measures.
What you need to bring:
- 5+ years of deep hands-on experience in application security, product security, or software engineering with a strong security and privacy focus.
- Demonstrated experience working with production code in a polyglot environment across multiple programming languages.
- Experience partnering with Product Managers to incorporate security and privacy requirements into the product roadmap and feature design.
- Bachelor's degree or equivalent experience in computer science, cybersecurity, or a similar field.
- Significant experience with secure software development lifecycles (SSDLC) and aligning applications with privacy regulations (e.g., GDPR, CCPA).
- Professional certifications like CISSP, CSSLP, CIPP, CIPT or equivalent are a plus.
- As a global company with employees and clients outside of Quebec, fluency in English as a working language is required for this position.
What’s in it for you:
- Join a growing team and help us move to the next level
- Amazing benefits & perks, including equity for all Lightspeeders
- Constant development of both your skill-set and business acumen with limitless growth opportunities
- Lots of autonomy, flexible work culture
- Innovation time to explore and learn at work
- Shaping the company by joining cultural & technical committees
- Tons of growth opportunities into technical or people management roles
- Opportunity to join a fast-paced, high-growth company
- Opportunity to learn, expand your skill set, forge wonderful relationships and make your mark within the diverse and inclusive Lightspeed family, a true Canadian tech success story
…. And enjoy a range of benefits that will keep you happy, healthy and (not) hungry.
- Lightspeed equity scheme (we are all owners).
- Flexible paid time off and remote work policies.
- Health insurance.
- Contributions to your pension plan - RRSP.
- Health and wellness benefit of $500 per year.
- Paid leave and assistance for new parents.
- Mental health online platform and counseling & coaching services.
- Training opportunities to grow your skills and career
- Volunteer day.
- Fully stacked kitchen (hot and cold beverages, meals served)
- Happy hours to build your relationships with colleagues after work
To all recruitment agencies: Lightspeed does not accept unsolicited agency resumes. If we have not directly engaged your company in writing to supply candidates for a specific vacancy, Lightspeed will not be responsible for any fees related to unsolicited resumes.
Lightspeed is a proud equal opportunity employer and we are committed to creating an inclusive and barrier-free workplace. Lightspeed welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.
Where to from here?
Obviously, this has to be mutually beneficial: we want you to step into a role you love, and we want to offer you a place you’re proud to come to every day. For a glimpse into our world check out our career page here.
Lightspeed is building communities through commerce, and we need people from all backgrounds and lived experiences to do that. We were founded in 2005, in Montreal’s gay village and our original members were all part of the LGBTQ+ community. The ethos of our business has been about inclusion from the very beginning, and we strive to provide a workplace where everyone belongs.
Who we are:
Powering the businesses that are the backbone of the global economy, Lightspeed's one-stop commerce platform helps merchants innovate to simplify, scale, and provide exceptional customer experiences. Our cloud commerce solution transforms and unifies online and physical operations, multichannel sales, expansion to new locations, global payments, financial solutions, and connection to supplier networks.
