TL;DR: Architect the trust and identity primitives for a platform enabling millions to ship code. You will shape the security posture of our engine, ensuring that as software creation democratizes, it remains resilient, secure, and accessible to all.

Why Lovable?

Lovable lets anyone and everyone build software with any language. From solopreneurs to Fortune 100 teams, millions of people use Lovable to transform raw ideas into real products - fast. We are at the forefront of a foundational shift in software creation, which means you have an unprecedented opportunity to change the way the digital world works. Over 2 million people in 200+ countries already use Lovable to launch businesses, automate work, and bring their ideas to life. And we're just getting started.

We're a small, talent-dense team building a generation-defining company from Stockholm. We value extreme ownership, high velocity, and low-ego collaboration. We seek out people who care deeply, ship fast, and are eager to make a dent in the world.

What we’re looking for

• Extensive experience with large-scale systems' security, particularly building OIDC/OAuth2 providers, product security features, and multi-tenant isolation layers.

• Proficiency across React/TypeScript and Go/Node.js, with a desire to navigate the full request lifecycle from UI to pod-level.

• A desire to lead and scale production environments where performance and security are thoughtfully balanced.

• A collaborative technical leader who values writing modular, observable, and resilient code, and who also thrives in sustainable, low-ego environments and values proactive responsibility for the production ecosystem.

• Systems thinker who enjoys high-leverage architectural decisions and different cognitive approaches to problem-solving.

What you’ll do
In one sentence: You will lead the engineering of our identity and security infrastructure, transforming complex trust requirements into seamless, high-performance primitives in a flexible and inclusive environment.

• Engineer and scale authn/z and identity services, RBAC, SSO, and phishing-resistant user protection flows.

• Architect multi-tenant isolation strategies in the AI-driven platform to ensure robust protection between user environments.

• Drive the security roadmap by identifying systemic weaknesses in customer applications and architectures, implementing scalable mitigation patterns across the stack.

• Serve as a technical guide for security, providing constructive feedback via architectural reviews and mentoring the team on defensive programming.

• Collaborate with Product to build 'invisible security': features that protect users while maintaining a smooth and efficient build-and-ship loop.

• Bridge the gap between enterprise-grade compliance requirements and the steady, iterative delivery cycles of our engineering team.

• Contribute diverse perspectives to our low-ego culture, helping us build a platform that serves a global and diverse user base.

Our Tech Stack

• Frontend: React, TypeScript

• Backend: Go, Node.js

About your application

Please submit your application in English. It’s our company language, so you’ll be speaking lots of it if you join.

We treat all candidates equally - if you’re interested, please apply through our careers portal.