Fieldguide offers market-leading Artificial Intelligence that helps Advisory and Audit firms grow.
Built by Big Four practitioners and Silicon Valley technologists, our AI platform digitizes the…
Fieldguide offers market-leading Artificial Intelligence that helps Advisory and Audit firms grow.
Built by Big Four practitioners and Silicon Valley technologists, our AI platform digitizes the…
Inefficient, manual audit and advisory workflows in accounting and risk/compliance practices.
Founded
2021
Industry
Software Development
Funding Track Record
Series C- 2026-02-02
75000000
Participation from Geodesic and existing investors; company-reported total funding after this round $125M.
50000000
Prior rounds aggregated to earlier disclosed totals (company materials and prior reporting).
Investor Signal
“Goldman Sachs led Series C; other notable backers include Geodesic, Bessemer Venture Partners, 8VC, Thomson Reuters, Floodgate, Y Combinator, Fourth Realm”
Founders
What we do
Join the Team
Lead Security Engineer
RemoteSan Francisco Bay Area, US
Remote • San Francisco Bay Area, US
Related Companies
Company
HQ
Industry
Total Funding
Circleback
🌍Remote
Data and AnalyticsDeepTechInformation TechnologySoftware
-
Two Dots
🇺🇸San Francisco, US
Data and AnalyticsDeepTechFinanceInformation TechnologySecuritySoftware
$20M
Flow Engineering
🇺🇸San Francisco, US
DeepTechDesignInformation TechnologySoftware
$32M
Compa
🇺🇸Newport Beach, US
Administrative ServicesHR and RecruitingInformation TechnologySoftware
$49M
Altana
🇺🇸US
Data and AnalyticsInformation TechnologySoftwareTransportation
$324M
Who you are
AppSec-first mindset: Your core strength is application security. You think about auth flows, data isolation, injection vectors, and API boundaries instinctively. You’ve found and fixed real vulnerabilities in production systems
AI-native instincts: You have a practical thesis on using LLMs, agents, and automation to multiply the security team's impact. You're excited to use AI for tasks like automated code review triage, vulnerability prioritization, security questionnaire drafting, and pattern detection so the security function scales through leverage, not just headcount
Engineer who does security: You write code, read code, and think about security through an engineering lens. You’re comfortable contributing to production systems in Python and TypeScript when needed
Pragmatic risk thinker: You can look at a system design and quickly identify where the risks are, then prioritize based on actual impact rather than theoretical severity
Strong communicator: You translate security risks into business terms, influence engineering teams without direct authority, and present to enterprise customers with confidence
Comfortable with ambiguity: You’re owning a lot at a growth-stage company and will not have playbooks for everything. You’re energized by that
8+ years in security with a primary background in application security, product security, or security-focused software engineering
Track record of building or significantly maturing a security program, ideally at a growth-stage SaaS company
Strong programming skills with demonstrated experience writing production software
Familiarity with AWS security services and patterns: IAM, VPC, CloudTrail, KMS. You can identify misconfigurations and security gaps, even if you’re not the one writing Terraform
Experience with threat modeling methodologies and secure design review processes
Experience managing external penetration tests and coordinating remediation
Familiarity with AI/LLM security considerations and emerging risks in agentic AI systems is a plus
Experience supporting compliance frameworks (SOC 2, ISO 27001, NIST, FedRAMP) from the technical controls side is a plus
What the job involves
Benefits
Health
Dental
PTO
Startup jobs. A lot of them.
Your next opportunity is in here somewhere. Sign up to explore 70,000+ startups and their open roles. No spam. No gamification. Just jobs.
70,000+
Startups
81,000+
Open Roles
4,600+
New This Week
Technical Writer
InternshipHamburg, DE
Internship • Hamburg, DE
Data Scientist
InternshipBerlin, DE
Internship • Berlin, DE
Data Scientist
Part-timeAustin, US
Part-time • Austin, US
Mobile Developer
Full-timeNovi Sad, RS
Full-time • Novi Sad, RS
Data Scientist
Part-timeAmsterdam, NL
Part-time • Amsterdam, NL
Data Scientist
InternshipMunich, DE
Internship • Munich, DE
We’re looking for a Lead Security Engineer to build and own Fieldguide’s information security program
This role reports directly into our CTO and takes ownership of the technical security function and builds it into something that scales with the business
Your primary focus is on securing code, APIs, and product architecture our customers depend on
You’ll also bring working knowledge of infrastructure and cloud security
Your superpower should be embedding security into how software gets designed, built, and shipped
You’ll partner closely with Engineering, Product, and Compliance to ensure security is foundational to everything we do
Application security and secure development:
Lead secure design reviews, threat modeling, and security-focused code reviews across the product and platform
Ensure security is ingrained into the SDLC so that the secure path is the easy path for engineers with secure-by-default libraries, patterns, and guardrails
Own authentication, authorization, API security, and data protection architecture for a multi-tenant SaaS platform
Architect and maintain security tooling integrated into CI/CD pipelines: static analysis, dependency scanning, secrets detection
AI security:
Evaluate and mitigate risks specific to Fieldguide's AI Agents — prompt injection, data leakage through LLM contexts, unauthorized tool use, and unintended agent behaviors
Partner with Agent and Platform teams to define security boundaries for agent execution: sandboxing, least-privilege tool access, and runtime policy enforcement
Contribute to Fieldguide's approach to responsible AI, ensuring customer data is protected throughout the AI pipeline from ingestion through inference
Vulnerability management:
Build and run Fieldguide’s vulnerability management program: scanning, triage, SLA-driven remediation tracking, and engineering coordination
Ensure visibility into vulnerability posture across application code, dependencies, and infrastructure
Manage external penetration testing engagements, bug bounty programs, and coordinate remediation of findings
Infrastructure security:
Partner with infrastructure engineering to review and improve cloud security across our AWS environment: IAM, network architecture, secrets management, and logging
You don’t need to be an AWS infrastructure expert, but you should be comfortable identifying risks and recommending improvements
Ensure detection and monitoring capabilities are in place for security-relevant events via SIEM
Security operations:
Establish runbooks, communication protocols, and post-incident review practices in coordination with a 24/7 MDR team
Collaborate with engineers on incident response processes and playbooks
Cross-functional leadership and customer trust:
Partner with Compliance to ensure technical controls satisfy framework requirements (SOC 2, ISO 27001, ISO 42001, FedRAMP)
Help GTM teams articulate Fieldguide’s security posture to enterprise customers
Start as an individual contributor, but as the security program matures, hire and mentor security engineers. Set the culture and standards for how security operates at Fieldguide
What Success Looks Like:
Security is embedded in the development lifecycle. EPD team members engage with security early and often, not as a gate at the end
The security function uses AI and automation aggressively to punch above its weight. Manual toil is minimized and the team's leverage grows faster than its headcount
Fieldguide has a clear, measurable vulnerability management posture with SLAs that engineering consistently meets
Enterprise customers and auditors see a mature, well-articulated security program that builds confidence and accelerates deals
The security function scales through automation, tooling, and clear ownership rather than heroics
