
Lovable · Stockholm
TLDR; You'll own the identity layer that powers every Lovable app — from auth flows and session management to RBAC, API keys, and multi-tenancy isolation. This ...
You'll own the identity layer that powers every Lovable app — from auth flows and session management to RBAC, API keys, and
multi-tenancy isolation. This is a high-trust, high-impact role at the intersection of security, product, and platform
engineering, shaping how millions of end users authenticate into AI-generated applications.
About Lovable & the Apps Platform
Lovable is an AI-powered software creation platform. Millions of users use Lovable to go from idea to working application,
generating hundreds of thousands of apps every day.
The Lovable Apps Platform is what makes those generated apps actually run in production. The moment a user hits deploy, the Apps
Platform takes over — provisioning the database, handling user auth, storing files, serving the app over a custom domain,
capturing logs, and metering usage. It's the full backend and hosting layer for every app built on Lovable, designed so creators
never have to think about infrastructure to ship something real.
The Apps Platform is growing fast, and we're investing heavily in each layer of the stack — building deeper ownership over the
services that power our users' apps so we can move faster, scale better, and shape the product experience us and our users
actually want.
We're looking for a senior identity and access specialist to own authentication, authorization, and user management across the
Lovable Apps Platform. You'll build the identity layer that both Lovable's own platform and every user-generated app depend on —
from auth flows and session management to RBAC, API keys, and multi-tenancy isolation.
Identity is the front door to every Lovable app. As we move from a bundled auth stack to our own composable identity layer, we
need someone who can build a system that's both developer-friendly and security-hardened. You'll shape how millions of end users
authenticate into AI-generated applications — and how Lovable's own platform manages access, secrets, and trust. This is a
high-trust, high-impact role at the intersection of security, product, and platform engineering.
and app-level auth (end users of Lovable-generated apps)
tokens
sessions
critical path of every request
expertise
concerns
downstream
Our tech stack
We're building with tools that both humans and AI love. Lovable software engineers are capable of working across the whole stack.
And always on the lookout for what's next!
About your application
Every day, millions of people use SCRL to create and share content across social platforms. Behind the product is a small, profitable, and fully self-funded team based in Stockholm. Now we’re entering a new phase. As SCRL expands beyond native apps, we’re building the backend infrastructure required to support accounts, subscriptions, synchronization, APIs, and cross-platform experiences at scale. We’re looking for a Senior Backend Engineer to help shape that foundation. You’ll work on the systems powering user identity, content delivery, subscription management, and data synchronization across iOS, Android, and web, while helping define the architecture and engineering standards behind the platform long term. What you will do In this role you will own the backend that powers SCRL across iOS, Android, and our upcoming web platform. You will work both on the bigger architectural decisions with our CTO and Head of Data, and on the new features together with the frontend team during our sprints. Day to day, that means: Building and maintaining the APIs and services that deliver content to millions of users Designing systems that scale as we grow, without scaling our costs at the same rate Owning our PostgreSQL database and how we store and serve content Building scalable and cost-efficient systems for storing and delivering images and creative assets using AWS and S3 Making sure premium status stays in sync across iOS, Android, and web Implementing proper security and access control, and making sure we stay GDPR compliant as we start storing user generated content in the cloud What we are looking for Several years of experience building and operating backend systems in production Strong foundations in TypeScript and PostgreSQL Experience working with cloud infrastructure on AWS or GCP Experience building systems that have scaled in terms of users, traffic, or complexity Comfortable being a senior voice in discussions around architecture, tradeoffs, and long-term platform decisions What we offer We are a small, international team based by Slussen in central Stockholm. Most of us work from the office with some flexibility, and the team is small enough that everyone has visibility into what is being built and why. What you'll get: Significant ownership and technical influence from day one A profitable, self-funded product used by millions globally A small and experienced team with fast decision-making and close collaboration 30 days of paid vacation Health benefits and pension salary exchange A fully stocked office with snacks and Nintendo Switch Monthly after works and quarterly team activities Annual company retreats. Recent trips have taken us to Bali, Lisbon, and Madrid. Want to become a part of Appostrophe? Then we’d love to hear from you. We review applications continuously. If you have any questions feel free to reach out to Johanna or Gabriella at Ants Tech Recruiters.
Looking for a job at one of the fastest growing companies in Stockholm? We’re looking for IT Support professionals to help keeping our customers team productive by delivering fast, reliable technical support across laptops, peripherals, accounts, and core workplace tools. What You’ll Do • Provide first-line support for day-to-day issues (hardware, software, access, connectivity) • Triage, troubleshoot, and resolve tickets; escalate when needed and follow through to closure • Onboard/offboard team members (device setup, accounts, permissions, security basics) • Maintain IT inventory and lifecycle management (procurement, replacements, repairs, asset tracking) • Support common workplace systems (e.g., identity/access, collaboration tools, endpoint management) • Document fixes and improve internal IT guides to reduce repeat issues Who You Are • Experience in IT support / helpdesk in a modern SaaS-first environment • Strong troubleshooting skills across macOS/Windows, basic networking, and common productivity tools • Hands-on expertise across identity (Okta / Entra / Google Workspace) • Endpoint management (Jamf / Intune / Kandji) • Networking basics, and the SaaS admin stack • Comfortable handling identity and access management tasks with care and attention to detail • Clear, patient communicator who can support a wide range of technical confidence levels • Organized and dependable, with a bias toward resolving issues efficiently and securely Strong English is a must have, Swedish is good to have. Nice to have • Experience with MDM/endpoint management, SSO, and security best practices • Familiarity with ticketing systems and building lightweight IT documentation • Exposure to supporting a distributed or fast-growing team The position is based in Stockholm Start: ASAP
About the Role We are looking for a Security & Compliance Engineer to help ensure security across our internal digital landscape. Reporting to Tacton’s Security & Compliance Manager, you will play a key role in ensuring that our systems, integrations, data flows, and vendor ecosystem are secure by design and in operation. This role focuses on internal systems and corporate security architecture, including infrastructure, integrations, and third-party services. You will combine architectural thinking with hands-on expertise and act as a trusted partner to IT, Engineering, and business stakeholders. You will have a direct impact on how we design, connect, and secure our systems as we continue to grow globally. This is a high-impact role for someone who understands modern digital environments and how to secure them end-to-end. What You Will Do Internal Security & Risk Lead security assessments of systems, integrations, and data flows Conduct technical risk analyses for system implementations and vendor onboarding Perform threat modelling and security reviews Define and implement security requirements for infrastructure and cloud environments Help establish and maintain security guardrails across identity, access, encryption, and integrations Proficiency in risk management Knowledge of emerging cybersecurity threats and trends Vendor & Third-Party Security Define and enforce security requirements in procurement processes Conduct supplier security assessments and due diligence Evaluate third-party risks from a cybersecurity perspective Governance & Compliance Maintain alignment with ISO 27001 and SOC 2 Type II Contribute to policies, standards, and security guidelines Support incident investigations Act as a subject matter expert in audits and internal forums What Will Help You Thrive 5+ years of experience in cybersecurity, information security, or a related field Strong technical foundation in cloud, networking, identity & access management, and system integrations Strong communication and stakeholder management skills Experience conducting technical risk assessments and security reviews Familiarity with ISO 27001 and SOC 2 Type II Ability to understand complex system landscapes and data flows Comfortable working cross-functionally with IT, Engineering, and Legal Certifications such as CISSP, CISM, or CISA are a plus Degree in Computer Science, Engineering, or a related field Who We’re Looking For We’re looking for someone with a strong hands-on, doer mentality who is focused on getting things done and creating real impact. You are pragmatic, prestigeless, and motivated by outcomes. You thrive in dynamic environments where responsibilities are broad, and you feel comfortable navigating uncertainty and solving problems independently. You are curious by nature, proactive in your approach, and continuously looking to learn and improve both yourself and the way things are done. Why Tacton? At Tacton, we’ve been building CPQ software for over 20 years. We’re a stable company with global customers and a product that’s central to how manufacturers sell We offer competitive benefits, flexibility in how we work, and a culture that values learning and collaboration A solid and stable company with over 20 years of industry experience. Flexible hybrid setup - 3x a week at the office 33 days of paid time off – 30 vacation days plus 3 extra to make sure you get the rest you deserve. Premium occupational pension – Our pension plan goes beyond ITP1, with higher employer contributions depending on your age and salary level. Generous wellness allowance – 5,000 SEK annually to support your health and wellbeing. Private healthcare insurance – Skip the waiting lines and get quick access to private medical care, including specialist consultations and treatments. Parental leave top-up – We top up your parental leave so you receive up to 90% of your base salary for up to 6 months, helping you focus on your family without financial stress Weekly treats – Fika one week, breakfast the next, because good food brings people together. This role is based in Stockholm, where we have invested in creating our unique home right next to Hötorget station. Tacton is a leading Software as a Service company trusted by global manufacturers. We got started in the late 1990s when six computer scientists figured out a revolutionary way to help Manufacturers overcome their most business-critical, product configuration challenges. Since those early days, we have grown to support global manufacturers seeking to thrive in a changing world. We invite you to find out more about us @ www.tacton.com/about