Security Engineer

StackOne Inc.

Job Overview

Location

London

Job Type

Full-time

Full Job Description

📋 Description

• Own the secure SDLC by driving SAST, dependency scanning, secrets detection, and PR-blocking standards across all code repositories.
• Harden the AWS and Cloudflare infrastructure including IAM policies, KMS key management, network segmentation, WAF configurations, GuardDuty, and zero-trust architecture patterns.
• Plan, scope, and execute end-to-end penetration testing engagements using both AI-driven scanners and human researchers, ensuring findings are tracked, fixed, and retested.
• Conduct threat modeling for product features prior to shipping, including OAuth flows, multi-tenant APIs, connector executions, and agent tool-calling paths.
• Build and enhance detection and response capabilities for credential theft and authentication flow compromises, leveraging observability tools to close incidents rapidly.
• Partner directly with engineering teams to embed security into daily workflows through architecture reviews, written security standards, and code review guardrails.
• Leverage LLMs and AI agents to accelerate security workflows such as triage, evidence gathering, and code review, while ensuring the security of the underlying models and tooling.
• Support compliance initiatives including SOC 2, ISO 27001, customer security audits, and pen test response coordination.
• Automate security checks and eliminate manual checklists by building custom tooling and integrations that enforce security at scale.
• Review and secure infrastructure-as-code (IaC) written in AWS CDK and Terraform, identifying misconfigurations and writing custom scanning rules.
• Monitor and improve the security posture of the entire code/application/device fleet using tools like Aikido, GitHub Advanced Security, 1Password, Drata, and Datadog.
• Collaborate with product and non-technical stakeholders to communicate risk, prioritize fixes, and align security goals with business objectives.
• Maintain and evolve the security stack including Cloudflare Workers, Zero Trust, Inspector, Sentry, Logfire, and Incident.io for real-time observability and incident response.
• Contribute to the development of secure, production-grade systems using TypeScript (Node.js) and Python, shipping code that directly improves platform security.
• Participate in an agile, fast-moving environment as a key hire on the Engineering team reporting directly to the CTO.
• Work within a hybrid model with approximately two days per week expected in the London office, with flexibility to discuss individual arrangements.

🎯 Requirements

• 3+ years in security engineering with hands-on experience securing AWS environments (IAM, KMS, networking, secrets, GuardDuty/Security Hub)
• Strong coding ability in TypeScript, Python, or Go with a track record of shipping production code, not just configurations or scripts
• Proven application security fluency including OWASP Top 10, threat modeling, and code-level reviews on real B2B SaaS systems
• Experience securing a multi-tenant B2B SaaS production environment
• Ability to own end-to-end security initiatives from scoping to shipping to measuring outcomes without waiting for handoffs
• Clear communication skills to collaborate effectively with engineers, product teams, and non-technical stakeholders

🏖️ Benefits

• Meaningful share options (EMI) to share in the company’s growth
• 25 days holiday + 1 additional day per year of tenure
• Private health insurance including dental and optical coverage
• £1,000 home office setup allowance + £500/year top-up
• £15/day lunch budget when working from the London office (up to £120/month)
• Annual team offsite to international locations (e.g., Spain, Portugal)
• Cycle2Work and Electric Cars scheme
• Health, fitness, and gift card discounts
• Hybrid working model with ~2 days/week in London office

Skills & Technologies

Python

JavaScript

TypeScript

Node.js

Hybrid

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

StackOne Inc.

Visit Website

About StackOne Inc.

StackOne provides a unified API that lets software companies integrate with multiple HR, payroll, ATS, LMS and other workforce platforms through a single interface. Instead of building and maintaining separate integrations, developers authenticate once and read or write data across systems like Workday, BambooHR, Greenhouse, SAP SuccessFactors and more using normalized data models. The platform handles token refresh, rate limits, permissions and compliance, so teams can launch integrations faster and keep them current without ongoing maintenance. Headquartered in San Francisco, StackOne serves SaaS vendors that embed workforce connectivity into their own products.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.