At a Glance
- Tasks: Establish security foundations for cutting-edge AI systems and protect sensitive enterprise data.
- Company: Pavo Labs, a pioneering tech company focused on Enterprise Superintelligence.
- Benefits: Founding equity, remote work, and collaboration with top-tier talent.
- Other info: Dynamic startup environment with opportunities for significant impact and growth.
- Why this job: Join a world-class team and shape the future of AI security.
- Qualifications: 5+ years in Security Engineering with a focus on Application and Cloud Security.
The predicted salary is between 36000 - 60000 £ per year.
Pavo is building Enterprise Superintelligence: compounding systems that take ownership of business outcomes and work with humans to deliver them. We believe that while foundation models are necessary, they are not sufficient. The hard problem is systems intelligence: end-to-end architectures that understand a company's code, data, and decisions, and improve themselves through experience. We are assembling a small, senior team of researchers and engineers obsessed with systems-first intelligence.
The Opportunity
As a Founding Security Engineer, you will help establish the security foundations for Pavo's agentic and knowledge systems. You help secure autonomous systems that write code, execute tools, and interact with sensitive enterprise data. This role sits at the bleeding edge of AI Security, wherein you harden the infrastructure that allows our knowledge and agentic systems to work safely inside Fortune 500 environments.
What You'll Build
- AI & Application Security: Lead the defense against LLM-specific vulnerabilities (Prompt Injection, Insecure Output Handling) and standard web threats (OWASP Top 10). Implement "Guardrails" that sanitize agent inputs/outputs and conduct continuous red-teaming of our agent behaviours.
- Secure SDLC & DevSecOps: Embed security into our CI/CD pipelines without slowing down our high-velocity engineering team. Integrate automated SAST/DAST scanning, dependency management (SCA), and secret detection into our daily workflow.
- Cloud & Infrastructure Hardening: Work closely with Systems Engineers to secure our Kubernetes clusters and compute environments. Design strict IAM policies (least privilege for agents) and ensure network isolation so that agent execution environments are impenetrable.
- Vulnerability Management: Own the lifecycle of vulnerability detection and remediation. Manage bug bounty programs, coordinate third-party pentests, and ensure our open-source dependencies (and the code our agents generate) are secure.
- Enterprise Trust: Help design features that give our customers confidence, such as audit logging, data residency controls, and rigorous access governance.
What We Are Looking For
We are looking for a security practitioner who is a builder at heart—someone who would rather ship a secure fix than write a policy document.
Core Qualifications
- Experience: 5+ years of experience in Security Engineering, with a strong focus on Application Security and Cloud Security.
- AppSec Proficiency: Deep understanding of modern web vulnerabilities (CSRF, SSRF, XSS) and experience utilizing tools like Burp Suite, Semgrep, or CodeQL. Review code in Python or Go and spot logic flaws that scanners miss.
- AI Security Curiosity: Understand the unique risks of LLMs. Familiar with the OWASP Top 10 for LLMs and have explored defenses against prompt injection and data exfiltration in agentic systems.
- Cloud Native Security: Hands-on experience securing AWS/GCP environments and Kubernetes clusters. Knowledge of container security (capabilities, seccomp, namespaces) and how to secure microservices architectures.
- Offensive Mindset: Experience with Red Teaming or CTFs. Think like an attacker to uncover weaknesses in business logic and agent reasoning.
Nice to Have
- Experience securing execution sandboxes (gVisor, Firecracker, or similar).
- Background in "Purple Teaming"—collaborating with developers to fix what you break.
- Contributions to the open-source security community or research on AI safety.
- Knowledge of compliance frameworks (SOC 2, ISO 27001) in an early-stage startup context.
Why Join Us
- Founding Equity: Significant ownership in a company tackling the next layer of the AI stack.
- Frontier Security: Define the security standards for a new category of software—autonomous enterprise agents.
- World-Class Team: Collaborate with a dense talent cluster of researchers and engineers who have shipped products serving hundreds of millions of users.
Pavo is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
Founding Security Engineer (Application & Infrastructure) employer: Crane Venture Partners
Pavo Labs is an exceptional employer for those looking to make a significant impact in the field of AI Security. With a focus on building trustworthy Enterprise Superintelligence, employees enjoy a collaborative work culture that fosters innovation and creativity, alongside opportunities for professional growth through hands-on experience with cutting-edge technologies. The unique advantage of working at Pavo includes the chance to be part of a founding team, offering significant equity and the ability to shape the future of autonomous systems in a supportive and diverse environment.
StudySmarter Expert Advice🤫
We think this is how you could land Founding Security Engineer (Application & Infrastructure)
✨Tip Number 1
Network like a pro! Attend industry meetups, webinars, or conferences related to AI and security. It's all about making connections that could lead to job opportunities, so don’t be shy—introduce yourself and chat with others in the field.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your projects, especially those related to application and cloud security. This is your chance to demonstrate your expertise and passion for the role, so make it shine!
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and challenges. Think through how you would tackle vulnerabilities specific to LLMs or cloud environments. We want to see your problem-solving skills in action!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who are proactive about joining our team at Pavo Labs.
We think you need these skills to ace Founding Security Engineer (Application & Infrastructure)
Some tips for your application 🫡
Show Your Passion for Security:When writing your application, let us see your enthusiasm for security engineering. Share specific examples of projects or challenges you've tackled that highlight your skills in Application and Cloud Security. We love seeing candidates who are genuinely excited about building secure systems!
Tailor Your CV and Cover Letter:Make sure to customise your CV and cover letter to align with the job description. Highlight your experience with LLMs, web vulnerabilities, and any relevant tools you've used. This helps us see how your background fits perfectly with what we're looking for at Pavo.
Be Clear and Concise:Keep your application clear and to the point. Use bullet points where possible to make it easy for us to read through your qualifications and experiences. We appreciate a well-structured application that gets straight to the good stuff!
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows us you’re keen on joining our team at Pavo!
How to prepare for a job interview at Crane Venture Partners
✨Know Your Stuff
Make sure you brush up on your knowledge of modern web vulnerabilities and AI security. Familiarise yourself with the OWASP Top 10 for LLMs and be ready to discuss how you've tackled issues like prompt injection or insecure output handling in the past.
✨Show Your Hands-On Experience
Be prepared to share specific examples of your work in securing cloud environments, especially AWS or GCP. Talk about your experience with Kubernetes clusters and how you've implemented security measures in CI/CD pipelines without slowing down development.
✨Think Like an Attacker
Demonstrate your offensive mindset by discussing any Red Teaming or CTF experiences. Share how you’ve identified weaknesses in business logic or agent reasoning, and how you approached fixing those vulnerabilities.
✨Ask Insightful Questions
Prepare thoughtful questions that show your interest in Pavo's mission and the role. Inquire about their approach to vulnerability management or how they envision the future of AI security. This not only shows your enthusiasm but also helps you gauge if the company is the right fit for you.
