At a Glance
- Tasks: Lead the development of AI governance tools for enterprise SaaS integrations.
- Company: Join StackOne, a cutting-edge AI integration platform backed by top investors.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Other info: Collaborate with founders and engineers in a high-ownership role.
- Why this job: Shape the future of AI governance and make a real impact in tech.
- Qualifications: Strong software engineering skills and experience with API management or security platforms.
The predicted salary is between 80000 - 100000 Β£ per year.
About StackOne: StackOne is the AI Integration Gateway for SaaS products and AI Agents. Backed by GV and Workday Ventures ($24M raised), we help builders of SaaS platforms and AI Agents orchestrate hundreds of scalable, accurate, and enterprise-grade integrations. Our platform combines 25,000 pre-mapped actions on 200 connectors, an AI-powered integration development toolkit, plus security by design: a real-time architecture, managed authentication and permissions, and end-to-end observability. Join us on our fast trajectory to build the future of agentic integrations.
Own how enterprises govern the tools their agents can reach: the enrollment, provisioning, policy, posture, and identity-bound access layer that does for agent tooling what MDM and EDR (Jamf, Iru, CrowdStrike) do for devices, and what API gateways do for API traffic, at gateway scale.
Why this role exists: StackOne is the tools gateway for agents: the secure, token-efficient layer through which AI agents reach 200+ enterprise SaaS systems. As enterprises connect agents to real tools and real data, governance becomes the defining problem: who or what may invoke which tool, with which scopes, against which data, under which conditions, and how you catch it when something drifts, misbehaves, or turns into a vulnerability.
The mental model: What MDM, EDR, and identity platforms did for devices & software access, and what API gateways did for API traffic, applied to the tools agents use:
- Enroll & inventory devices β register and inventory the tools agents can reach (servers, APIs, connected accounts)
- Provision apps and configs to devices β provision agent and user access to specific tools and scopes
- Compliance baselines and config profiles β policy for tool, scope, and data access, with conditional rules and guardrails
- Authenticate, authorize, and rate-limit every API call (API gateway) β authenticate, authorize, and govern every tool call an agent makes through the gateway
- Continuous posture and vulnerability monitoring β continuous posture monitoring of connected tools and their usage
- Telemetry, detection, and response (EDR) β instrumentation of tool traffic, anomaly and abuse detection, containment controls
- Bind device identity to the corporate IdP β bind agent and tool access to enterprise identity (OAuth 2.1, SSO, SCIM)
What you'll work on:
- Provisioning lifecycle for tool access β enroll, grant, rotate, revoke β across our managed auth and connector-profile layer, so builders and end users never hand-wire OAuth apps.
- Policy and enforcement β shape the authoring, versioning, and runtime enforcement of access policies (including LLM assisted policy generation): which agent, which tool, which scope, which data classes, conditional on identity and context. This is central to our agent-permissioning work.
- Posture and risk β continuous assessment of connected tools and the SaaS behind them; surface risky scopes, stale grants, and anomalous invocation patterns.
- Instrumentation and telemetry β deepen structured, queryable visibility into the tool calls flowing through the gateway, with the latency discipline of a system on the hot path.
- Identity integration β extend our OAuth 2.1, SSO, and SCIM story so policy and provisioning stay bound to enterprise identity rather than bolted on.
- Detection and response β the agent-era analog of EDR: define what "bad" looks like, surface it, and give operators the controls to contain it.
What we're looking for:
- Strong software engineering fundamentals β comfortable owning a system end-to-end in production.
- Built or operated at least one of: an API gateway / management platform (Kong, Apigee, Zuplo, AWS API Gateway, and similar), MDM/UEM (Jamf, Kandji, Intune, Workspace ONE, Google Workspace MDM), EDR/XDR (CrowdStrike, SentinelOne, and similar), or a comparable policy-driven provisioning, posture, or access-control platform. Crossover across more than one of these is a real plus.
- Built a policy or rules engine β authoring model, evaluation, enforcement, versioning. You know the difference between expressing a policy and enforcing it at runtime.
- Identity systems β OAuth/OIDC, SAML, SSO, SCIM β with a real grasp of scopes, grants, token lifecycle, and least privilege in practice.
- Telemetry and instrumentation of a system on the request path, and the trade-offs of monitoring without adding meaningful latency.
- LLM and AI experience - you've used if not built MCP servers before, you understand the governance and guardrails problems linked to AI usage and have created AI Agents before.
Nice to have:
- Security background: vulnerability management, threat detection, or compliance posture (SOC 2 / ISO 27001 environments).
- Experience shipping a product that other developers configure and rely on (platform / API empathy).
- Built or contributed in public (OSS, specs, write-ups).
Who you'll work with: Reporting into engineering leadership, partnering closely with the founders (Romain, CEO; Guillaume, CTO) and the security and platform engineers. This is a high-ownership role on a strategic pillar of StackOne's roadmap. You'll set be able to the technical direction for how StackOne governs agent access to tools, for the IT and security leaders who decide whether agents get to touch real systems.
Senior Engineer (AI Governance) in London employer: StackOne
At StackOne, we pride ourselves on fostering a dynamic and innovative work culture that empowers our employees to take ownership of their projects and drive meaningful change in the AI governance landscape. Located in a vibrant tech hub, we offer competitive benefits, continuous learning opportunities, and a collaborative environment where your contributions directly impact the future of agentic integrations. Join us to be part of a forward-thinking team backed by leading investors, where your expertise will help shape the tools that govern AI access across enterprises.
StudySmarter Expert Adviceπ€«
We think this is how you could land Senior Engineer (AI Governance) in London
β¨Tip Number 1
Network like a pro! Attend industry meetups, webinars, and conferences related to AI governance and SaaS integrations. It's all about making connections and getting your name out there. You never know who might be looking for someone just like you!
β¨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to API gateways or policy engines. This gives potential employers a taste of what you can do and sets you apart from the crowd.
β¨Tip Number 3
Prepare for interviews by brushing up on common questions in the AI governance space. Think about how your experience aligns with StackOne's mission and be ready to discuss how you can contribute to their goals. Confidence is key!
β¨Tip Number 4
Don't forget to apply through our website! Itβs the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in being part of the StackOne team!
We think you need these skills to ace Senior Engineer (AI Governance) in London
Some tips for your application π«‘
Tailor Your Application:Make sure to customise your CV and cover letter for the Senior Engineer role. Highlight your experience with API gateways, policy engines, and identity systems, as these are key to what we do at StackOne.
Showcase Your Projects:If you've built or operated relevant platforms, donβt hold back! Share specific projects that demonstrate your skills in governance, telemetry, and risk assessment. We love seeing real-world applications of your expertise.
Be Clear and Concise:When writing your application, keep it straightforward. Use clear language to explain your experience and how it relates to the role. We appreciate a well-structured application that gets straight to the point!
Apply Through Our Website:We encourage you to apply directly through our website. Itβs the best way for us to receive your application and ensures youβre considered for the role. Plus, itβs super easy!
How to prepare for a job interview at StackOne
β¨Know Your Tech Inside Out
Make sure youβre well-versed in the technologies mentioned in the job description, especially around API gateways, MDM/UEM, and EDR/XDR systems. Brush up on your understanding of OAuth/OIDC, SAML, and SCIM, as these are crucial for the role.
β¨Showcase Your Problem-Solving Skills
Prepare to discuss specific challenges you've faced in previous roles, particularly around policy enforcement and risk management. Use examples that highlight your ability to govern access and manage vulnerabilities effectively.
β¨Demonstrate Your Engineering Fundamentals
Be ready to talk about your experience owning systems end-to-end in production. Highlight any projects where youβve built or operated platforms similar to what StackOne offers, and explain how you approached system design and implementation.
β¨Engage with the Interviewers
Donβt hesitate to ask insightful questions about StackOneβs approach to AI governance and tool access. This shows your genuine interest in the role and helps you gauge if the company aligns with your values and career goals.
