← All jobs
incident.io
Hybrid

Security Engineer

Product Development
gotypescriptreactpostgresqlgcp
Apply now →
  • 💬 Please mention you found this role on RemoteStackJobs — it helps us bring more verified remote jobs to the board.
  • ⚠️ Legitimate employers never ask you to pay to apply.

A little about us

incident.io is the leading AI incident response platform, relied on by some of the best engineering teams in the world when things go wrong.

Since launching in 2021, we've helped over 2,000 companies, including OpenAI, Netflix, and Airbnb, run more than 1 million incidents.

The stakes are real, the talent is insane, and somehow it's a genuinely lovely place to work. We all pull our weight, go the extra mile, and put in the bit of magic most companies don't have time for, all while having fun and never taking ourselves too seriously.

We've raised $96 million from Index Ventures, Insight Partners, and Point Nine, and we're growing fast. There's never been a better time to join.

The role in one line

You'll build incident.io's security function from the ground up, creating a product secure enough to support some of the best engineering teams in the world when things are going wrong.

What that looks like day to day

We're looking for our second Security Engineer, someone with a real passion for application security who thrives embedded within product teams rather than sitting apart from them. You'll be part of building this function out to a team of five this year, and you'll work side by side with engineers to design and build secure systems from the start, not swoop in at the end with a checklist.

The work is greenfield and you'll be deciding how security gets done at incident from first principles, not inheriting someone else's process. There's very little process here today, and that's deliberate, it means you can move quickly rather than fight your way through approval chains. You'll have real autonomy over how you approach the work.

The engineers you'll be working with are excellent, and they've already dealt with the easy problems. What's left for you is the genuinely hard stuff, the kind of work that's interesting precisely because it hasn't been solved yet. The role spans a bit of application security, a bit of infrastructure, a bit of tech ops, we're looking for a generalist at heart, with application security as the strongest focus.

We think of security as something that helps the business move, not something that slows it down. That means saying yes wherever we genuinely can, while still having the authority to block a release when something matters enough.

We're heavy adopters of AI, and this role sits right in the middle of that. You'll have an unlimited Claude token budget to speed up your own work, review, testing, threat modelling, and you'll also be responsible for securing the AI features and AI driven workflows we're shipping into the product.

Who you are

  • You've got a track record across application security, cloud, or infrastructure, whether that's vulnerability research, penetration testing, red teaming, or hardening systems at scale

  • You're comfortable moving between different parts of the stack, application code, cloud infrastructure, CI/CD, tooling, rather than staying in one lane

  • You know your way around modern web stacks, React, Go, TypeScript, Postgres or similar, well enough to spot where things go wrong before they do

  • You're genuinely comfortable embedding inside a product team and influencing design decisions, not just reviewing them after the fact

  • You've got real cloud security experience, ideally GCP, and you know how to focus on what actually reduces risk rather than chasing every theoretical issue

  • You communicate well, you can deliver a hard piece of feedback to an engineer and have them thank you for it

  • You've got grit, you're building this function from nothing, and the hard days, the scary find in production, the process that doesn't exist yet, don't put you off

  • You live and breathe security, this isn't just the day job for you, it's something you genuinely geek out on

Supporting you

We work hard and we think life outside work matters just as much. Our benefits pack is built to support both.

  • Private medical insurance. Seriously good cover - we want you and the people you love to be looked after.

  • Competitive annual leave. Showing up at your best requires switching off, and we make sure you have time to do that.

  • First Friday of every month off. Yes, seriously.

  • Enhanced pension. We put real money in, because future-you deserves better than an afterthought.

  • Meaningful equity. We're rapidly scaling, and everyone who helps shape the outcome should share in it.

  • Unlimited AI spend. For everyone, not just engineers. We're all-in on AI across the company, and we expect you to be too.

  • Generous parental leave. The early days with a new baby matter more than anything we're doing here, and we want you to be present for them.

  • Two budgets that have your back. £1000 to invest in your setup, £500 a year to invest in yourself.