Rodeo
ResourcesPartnersSign in

Fin

Application Security Engineer

London
Posted 8 days ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

Application Security Engineer

About Fin

Fin is the AI Customer Agent company on a mission to help businesses provide perfect customer experiences.

Our AI Agent Fin is the highest-performing AI Customer Agent on the market today, enabling businesses to deliver impeccable, always-on customer support across the customer journey — from service, to sales, to ecommerce. Powered by our own AI models, Fin resolves complex customer issues end-to-end across every channel, with minimal set-up and integration. Fin can also be combined with our natively integrated Intercom help desk for a single system designed to meet the needs of modern day support teams.

Founded in 2011, Fin became one of the fastest growing companies and remains one of the largest private software companies in the world with nearly 30,000 global businesses using our products to transform their customer support. Driven by our core values, we push boundaries, build with speed and intensity, and relentlessly deliver incredible value to our customers.


The Opportunity

Fin is transforming customer service through AI, helping businesses deliver fast, accurate, and reliable support at scale. Trust is foundational to that mission.

Fin’s Security Engineering team is unlike most security teams. We own and operate critical security services, build customer-facing security features, and partner with engineering teams to make secure development the default. We’re engineers first; designing, building, and operating systems that protect Fin and its customers. The team owns and operates tier-zero services, including:

  • Authentication
  • SAML/SSO
  • Teammate activity logs
  • Malicious URL scanning
  • Other critical trust and security capabilities

The mission of the team is to help Fin build and operate trusted AI-powered customer service experiences by making security a natural part of how products are designed, developed, and delivered. As Fin continues to expand its capabilities and adoption, you’ll help shape how security evolves alongside some of the most ambitious AI-powered products in customer service. We’re taking an AI-first approach to security, exploring:

  • AI-powered detection
  • Red-team automation
  • Continuous monitoring
  • Emerging defensive capabilities

Responsibilities

Core Responsibilities

  • Own and engineer tier-zero security capabilities that help customers securely deploy and manage Fin.
  • Design, build, and evolve customer-facing security features, including:
    • Authentication
    • SAML/SSO
    • Permissions systems
    • Audit and activity logging
    • Malicious URL scanning
    • Enterprise security controls (identity and access management)
  • Partner with engineering teams throughout the software development lifecycle to build secure products and services.
  • Perform architecture reviews, threat modelling exercises, and security assessments for new features and systems.
  • Build security tooling, automation, and developer-facing building blocks that make secure development easier and more scalable.
  • Contribute to secure development standards, guidance, and best practices across Fin.
  • Lead application security initiatives across the software development lifecycle, helping teams identify and address security risks early.
  • Participate in a shared on-call rotation and lead security incident response, investigative, and remediation efforts.
  • Drive security initiatives from problem definition through design, implementation, and measurable outcomes.
  • Partner with teams building AI-powered products to assess and mitigate emerging security risks.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

Bonus Responsibilities

  • Help shape Fin’s AI-first approach to security, including continued exploration of AI-powered detection, red-team automation, continuous monitoring, and ** émerging defensive capabilities**.
  • Secure adoption of AI-assisted software development tools and engineering workflows.
    • AI agentic systems and retrieval-based architectures
    • Security considerations for large language models (LLMs)
    • Promption engineering risks
    • AI-assisted application security solutions

Requirements

Essential Skills

  • Proven experience in application security, product security, or security engineering within a SaaS environment.
  • Strong software engineering skills with hands-on experience:
    • Designing, building, and operating production systems
    • Experience in **distributed systems, cloud-native architectures or software-defined perimeters
  • Deep understanding of:
    • Modern application security threats
    • Secure software development practices
    • Threat modelling techniques
  • Experience designing, building, or securing:
    • Authentication systems (OAuth, OpenID, SAML/SSO)
    • Authorisation models
    • Identity and Access Management (IAM)
    • Enterprise security controls (logging, auditing)
  • Experience in architecture reviews and security threat modelling for complex systems.
  • Hands-on experience in security incident response, including:
    • Leading incident investigations
    • Remediation efforts
  • Strong programming skills and experience building:
    • Security tooling
    • Automation
    • Developer-focused solutions (like DevSecOps/Kubernetes)
  • Comfort using modern AI-assisted development tools (e.g. AI prompt engineers, pre-built model scanning).
  • Ability to:
    • Communicate security concepts clearly to non-technical stakeholders.
    • Collaborate effectively with engineering teams.
  • A pragmatic approach to balancing:
    • Security and customer impact
    • Engineering velocity

Bonus: Preferred Experience

  • Experience building or contributing to authentication, SAML/SSO, identity, or access management systems.
  • Direct experience securing AI-powered products or deep knowledge of:
    • Security considerations for LLMs, agentic systems
    • Retrieval-based AI architectures
    • Policy enforcement at the inference level
    • Inference-level guards and jailbreak mitigation
  • Experience in building security automation or security-focused platform capabilities at scale.
  • Familiarity with cloud security (GCP, AWS, Azure), infrastructure security, or distributed security systems.
  • Broad exposure to scaling highly available, high-performance security systems in SaaS deployments.

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

Benefits

We’re a well-treated bunch with awesome benefits! If there’s something important to you that isn’t listed here, bring it up—we want to make sure we have the right fit!

  • Competitive salary and equity in a fast-growing startup
  • Daily catering: We serve lunch every weekday, along with a variety of snack foods and a fully stocked kitchen.
  • Regular compensation reviews: We reward great work!
  • Unlimited access to productive AI tools: Claude Code (synthetic prompting recs), high-grade LLMs, and AI-engineering workflows.
  • Pension & match: Up to 4% employer contribution.
  • Life assurance coverage, as well as comprehensive health and dental insurance for you and your dependents.
  • Flexible paid time off policy (core working hours enabled globally).
  • Parental resource provisions:
    • Paid maternity leave
    • 6 weeks paid paternity leave for fathers to spend valued time with loved ones.
  • Green commute support: Cycle-to-Work Scheme with secure bike storage.
  • Working devices: MacBook Pros standard, Windows-based PCs available when needed.

Policies

Hybrid Work Policy

Fin operates under a hybrid working model. We believe in-office collaboration helps:

  • Stay connected (community-building)
  • Build trust through visible engagement
  • Encourage culture preservation

As such, employees are required to be in the office at least three days per week. Strict voluntary, value-driven flexibility rules apply elsewhere.

Workplace Culture

Fin upholds a radically open and accepting culture:

  • Divisive subjects (e.g., political or moral commentary) are not allowed in internal/ external communications to foster a safe environment.
  • External personal commentary on non-work issues is not challenged under off-duty autonomy.
  • We avoid unhealthy controversial debate and focus on our mission.
  • Let’s build trust and impact together.

Equal Opportunity Statement

Fin is a diverse, inclusive company committed to equal employment opportunity. We do not discriminate against applicants or employees based on:

  • Race
  • Color
  • Religion
  • Creed
  • National origin
  • Ancestry
  • Sex
  • Gender or gender identity
  • Physical/mental disability
  • Veteran or military status
  • Genetic information
  • Sexual orientation
  • Marital status
  • Any other protected trait under Federal, State, or local law
Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Application Security
Product Security
Security Engineering
Software Engineering
Secure Software Development
Threat Modelling
Authentication
Authorization
Incident Response
Security Assessments
Security Automation
Cloud Security
Infrastructure Security
Distributed Systems
AI-Powered Products
Security Standards

Location

London, England, United Kingdom

Sign up to applySee more jobs like this