Senior Full-Stack Security/GRC Platform Engineer

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Senior Full-Stack Security/GRC Platform Engineer based in United States.

This role sits at the intersection of full-stack engineering, cybersecurity, and Governance, Risk, and Compliance (GRC) platform development, supporting a highly complex and mission-critical SaaS product. The position involves working across backend, frontend, data, and infrastructure layers to build and maintain a large-scale platform that powers security and compliance workflows. The engineer will contribute to FastAPI-based services, React/TypeScript interfaces, and PostgreSQL data systems while ensuring reliability, scalability, and security across the stack. The environment is deeply technical and requires comfort with distributed systems, asynchronous processing, and production-grade software operations. In addition, the role integrates AI-assisted capabilities, scanner ingestion pipelines, and compliance automation features. It is ideal for an engineer who thrives in complex systems, enjoys end-to-end ownership, and is motivated by security and regulatory impact.

• Maintain and extend a large-scale full-stack GRC platform spanning FastAPI backend services, React/TypeScript frontend applications, and PostgreSQL data systems
• Design, implement, and optimize APIs, database schemas, migrations, and async worker workflows to ensure system reliability and performance
• Develop and enhance UI workflows supporting security, compliance, risk, and audit processes across complex enterprise environments
• Integrate and normalize security scanner outputs (SAST, IaC, cloud, vulnerability, identity, and more) into structured compliance workflows
• Maintain AI-assisted platform features using provider abstraction layers, including retrieval, context management, and evidence-based outputs
• Support GRC workflows such as risk management, control mapping, evidence collection, POA&Ms, SSPs, and audit reporting
• Ensure system quality through robust testing, linting, CI/CD validation, observability, and production monitoring practices
• Debug and resolve issues across the full stack, including API contracts, frontend state, database integrity, and deployment environments
• Collaborate on infrastructure reliability using Docker-based development environments and cloud-native operational tooling

Requirements:

• 6+ years of professional experience in Python backend development
• Strong expertise in FastAPI, Pydantic, SQLAlchemy, Alembic, async Python, and pytest
• Solid frontend experience with React, TypeScript, Vite, React Router, and React Query
• Strong PostgreSQL knowledge, including schema design, indexing, migrations, and JSON/JSONB handling
• Experience building and maintaining large-scale APIs and generated SDK/client ecosystems
• Familiarity with async worker systems and Redis-based queues
• Strong security engineering fundamentals, including authentication, authorization, RBAC, and secure coding practices
• Ability to troubleshoot complex distributed systems where documentation, code, and runtime may diverge
• Experience with DevOps tools such as Docker Compose, CI/CD pipelines, and infrastructure-as-code (e.g., Terraform)
• Understanding of GRC and security frameworks such as NIST 800-53, RMF, FedRAMP, FISMA, CMMC, ZTA, and related standards
• Experience with AI/LLM systems such as RAG, embeddings, prompt design, and structured context management preferred

Benefits:

• Competitive salary range of $86,500–$129,900 annually, with eligibility for discretionary bonuses
• Comprehensive health coverage including medical, dental, vision, and prescription plans
• Retirement benefits including a 401(k) plan
• Paid time off, sick leave, and company-paid holidays
• Paid parental leave and family support programs
• Health savings accounts and flexible spending accounts
• Short-term and long-term disability coverage
• Tuition reimbursement and ongoing professional development opportunities
• Employee assistance programs and wellness support services
• Commuter benefits and supplemental insurance options
• Inclusive benefits package designed to support work-life balance and long-term career growth