Application Security Engineer

Board Intelligence is a technology and advisory firm that supercharges boards with the science of board effectiveness. We build better businesses and benefit society.  

Through a suite of AI-powered software tools, evaluation frameworks, and advisory services that distil twenty years of boardroom experience, we improve the efficiency of board processes and the effectiveness of boards.  

We work with over 70,000 leaders and 3,000 organisations across the world, with clients across the Fortune 500, FTSE 100, and OMX 30. In 2024 we received substantial backing from K1 Investment Management – the leading B2B Enterprise SaaS investors. We are at the beginning of significant growth, and we’re looking for superb talent to join us on this journey.  

As we grow, we’re fiercely protective of our culture and values. Many of us, including our founders, have families and other priorities, so we know the value of a supportive company.  

The team is diverse and friendly. We value fun: most days you’ll find a social event or learning opportunity to get involved with, including company socials, away days, philanthropic activities and lunch & learns. 

Our Mission

We unleash the potential of organisations through the science of board effectiveness, building better businesses and benefiting society. 

Our Engineering Team

Our Engineering team builds, maintains, and improve the software that our clients rely on. Our work ensures that Board Intelligence product suite is efficient, scalable, and capable of adapting to changing customer needs. 

This role is an on-site position based in our Central Stockholm office.

The Role

We are seeking a Security Engineer (Full-Stack) to help build and secure our SaaS solution. In this role, you will work closely with our development teams to embed security best practices into our full-stack applications, which leverage Java, Ruby, React, and other technologies. You will take a proactive approach to measuring/identifying vulnerabilities, designing secure architectures, and implementing security controls across the stack.

What will you be responsible for?

• Secure full-stack applications written in Java (backend), Ruby (backend), and React (frontend)
• Implement and enforce secure coding practices in web applications and APIs
• Conduct threat modeling, code reviews, and security assessments
• Identify and remediate vulnerabilities in our SaaS infrastructure
• Develop security automation for detection and response mechanisms
• Collaborate with engineering, QA, and compliance teams to ensure security requirements are met
• Stay updated on emerging security threats and ensure compliance with security best practices (e.g., OWASP)

We’re looking for someone that has a hunger to change our working environment for the better, driving performance from our people and protecting our culture and values to make sure we remain a caring, entrepreneurial and client-first workplace.  

We’re open-minded on the background someone may have coming into this role, but things that could help a candidate to be successful would be: 

• Strong experience in application security
• Strong experience with securing web applications/APIs
• Familiarity with authentication/authorization mechanisms (OAuth, SAML, JWT)
• Proficiency in penetration testing, vulnerability scanning, and security tools
• Strong problem-solving and communication skills
• Experience working/testing in a SaaS-based, high-scale environment
• Contributions to open-source security projects or relevant certifications (e.g., CISSP, OSCP, CEH) is a plus

We pride ourselves on our great working environment and package. Here’s some of what’s on offer: 

• 25 days of Vacation with Advanced Vacation days  

• Wellness benefits including a wellness hour per week for exercise and up to SEK 2,000 per year for wellness activities  

• Parental leave with 90% salary coverage for up to 6 months  

• Comprehensive insurance including Group Life, TFA Safety and Travel  

• Regular team lunches and fikas  

• ITP1 + Flexpension  

• Vision benefit with free eye test & terminal glasses  

• Tax-free daily allowances for travel  

• Activities such as conferences, kick-offs, and other events