Security Engineer (SaaS/AI)

TL;DR

Security Engineer (SaaS/AI): Owning cloud and product security posture for an AI Integration Gateway with an accent on secure SDLC, AWS/Cloudflare hardening, and threat modeling. Focus on automating security checks, running end-to-end pen testing, and securing multi-tenant B2B SaaS environments.

Location: Hybrid; typically 2 days/week in the London office

Company

AI Integration Gateway for SaaS products and AI Agents, helping builders orchestrate enterprise-grade integrations.

What you will do

• Own the secure SDLC, driving SAST, dependency scanning, and secrets detection.
• Harden AWS and Cloudflare estates, managing IAM, KMS, WAF, and zero-trust patterns.
• Coordinate end-to-end pen testing using both AI-driven scanners and human researchers.
• Perform threat modeling for OAuth flows, multi-tenant APIs, and agent tool-calling paths.
• Build detection and response capabilities for credential and authentication flows.
• Collaborate with engineering on architecture reviews and written security standards.

Requirements

• 3+ years of security engineering experience with hands-on AWS security (IAM, KMS, GuardDuty).
• Strong coding ability in TypeScript or Python.
• Fluency in application security, including OWASP Top 10 and threat modeling.
• Experience securing B2B SaaS multi-tenant production environments.
• Must be based in or able to work from London (Hybrid)

Nice to have

• Experience with Aikido, Drata, Cloudflare Workers, or pen testing in compliance-mature environments.

Culture & Benefits

• Meaningful EMI share options.
• 25 days holiday with annual tenure-based increases.
• Private health insurance, including dental and optical.
• £15/day lunch budget for London office and £1,000 home office setup allowance.
• Annual team offsites to international locations.
• Collaborative environment with veterans from Google, Microsoft, and Oracle.