Security Engineer

The Company

Board Intelligence is a rapidly growing Software as a Service (SaaS) business, pioneering a suite of tools and services that supercharge the effectiveness of boards and leadership teams. 

In summer 2024, we received substantial backing from K1 Investment – leading B2B Enterprise SaaS investors based in LA. Through both organic growth and acquisitions, our aim is to be the global leader in the board portal and board governance space. We’re at the beginning of a significant journey of acquisition and integration and expect to at least double our size in the next year. We have already acquired TeamEngine from Sweden in September 2024 and are looking for more superb talent to join us on this journey.  

We’ve been helping boards to make smarter, faster decisions for over 20 years and have over 70,000 users engaged on our platform. We work with FTSE 100s, large privately owned companies, public sector and government departments, and have a great track record of growth and delivery.

We’re 150 people today and growing fast. As we grow, we’re fiercely protective of our friendly, high performing culture. With three international locations (UK, Sweden, Mauritius) and over 15 nationalities represented, the team is diverse and friendly, and most days you’ll find a social event or learning opportunity to get involved with. 

Many of us, including our founders, have families and other priorities, so we know the value of a supportive company. And all of us like to have fun, so our regular company socials, away days and lunch & learns are always a highlight. 

Engineering at Board Intelligence

Everyone says it, but in our case it’s true: Each member of our engineering team is amazing in their own right, but together they are what brings our product to life.

We’re very proud of the team we’ve built – there’s around 50 of us in Engineering now after growing quickly in 2024. We have ambitious plans to further improve our ways of engineering and to continue to enable boards to ‘see what matters’. You’ll play a big role in helping us achieve this in 2025/2026 and beyond.

Key responsibilities of the role

We are seeking a Security Engineer (Full-Stack) to help build and secure our SaaS solution. In this role, you will work closely with our development teams to embed security best practices into our full-stack applications, which leverage Java, Ruby, React, and other technologies. You will take a proactive approach to measuring/identifying vulnerabilities, designing secure architectures, and implementing security controls across the stack.

Technical

• Secure full-stack applications written in Java (backend), Ruby (backend), and React (frontend).
• Implement and enforce secure coding practices in web applications and APIs.
• Conduct threat modeling, code reviews, and security assessments.
• Identify and remediate vulnerabilities in our SaaS infrastructure.
• Work with DevOps & Kubernetes teams to secure CI/CD pipelines and cloud deployments.
• Develop security automation for detection and response mechanisms.
• Collaborate with engineering, QA, and compliance teams to ensure security requirements are met.
• Stay updated on emerging security threats and ensure compliance with security best practices (e.g., OWASP, NIST, ISO 27001).

Requirements

Required Qualifications

• Strong experience in application security or DevSecOps.
• Strong experience with securing web applications/APIs.
• Familiarity with authentication/authorization mechanisms (OAuth, SAML, JWT).
• Experience with cloud security (AWS, GCP, or Azure) and container security (Docker, Kubernetes).
• Understanding of secure SDLC practices, including static/dynamic analysis (SAST/DAST).
• Proficiency in penetration testing, vulnerability scanning, and security tools.
• Experience with compliance frameworks (SOC 2, GDPR, HIPAA) is a plus.
• Strong problem-solving and communication skills.

Preferred Qualifications

• Experience with IaC security (Terraform, Helm).
• Familiarity with SIEM, XDR, or other security monitoring tools.
• Experience working in a SaaS-based, high-scale environment.
• Contributions to open-source security projects or relevant certifications (e.g., CISSP, OSCP, CEH).

If you are passionate about building secure SaaS applications and working with modern full-stack technologies, we’d love to hear from you!

Apply now!

Benefits

We pride ourselves on our great working environment and package, which we can share upon application