Lead Security Engineer

Application Security and Secure Development:

• Lead secure design reviews, threat modeling, and security-focused code reviews across the product and platform.
• Ensure security is ingrained into the SDLC so that the secure path is the easy path for engineers with secure-by-default libraries, patterns, and guardrails.
• Own authentication, authorization, API security, and data protection architecture for a multi-tenant SaaS platform.

AI Security:

• Evaluate and mitigate risks specific to Fieldguide's AI Agents — prompt injection, data leakage through LLM contexts, unauthorized tool use, and unintended agent behaviors.
• Partner with Agent and Platform teams to define security boundaries for agent execution: sandboxing, least-privilege tool access, and runtime policy enforcement.
• Contribute to Fieldguide's approach to responsible AI, ensuring customer data is protected throughout the AI pipeline from ingestion through inference.

Vulnerability Management:

• Build and run Fieldguide’s vulnerability management program: scanning, triage, SLA-driven remediation tracking, and engineering coordination.
• Ensure visibility into vulnerability posture across application code, dependencies, and infrastructure.
• Manage external penetration testing engagements, bug bounty programs, and coordinate remediation of findings.