About the job

Role Overview

As our Backend Engineer with Security Focus, you’ll lead the design, implementation and hardening of our core APIs and services. You’ll be the go‑to expert for security best practices across the full stack, ensuring compliance with GDPR, SOC 2, ISO and emerging privacy regulations.

Responsibilities

•⁠ ⁠Lead design & development of scalable backend systems primarily using Django, Python and PostgreSQL

•⁠ ⁠Integrate, extend and maintain APIs from AI platforms (e.g. OpenAI, Gemini) and third‑party services

•⁠ ⁠Implement security controls: authentication, authorization, data encryption (in transit & at rest), audit logging.

•⁠ ⁠Define and enforce security standards (GDPR, SOC 2, ISO 27001) and conduct periodic risk assessments.

•⁠ ⁠Collaborate with DevOps to automate secure CI/CD pipelines, threat modeling and penetration tests.

•⁠ ⁠Mentor junior engineers on secure coding practices and threat‑aware architecture.

•⁠ ⁠Troubleshoot production incidents, perform root‑cause analyses, and drive permanent fixes.

Requirements

Must‑Have

•⁠ ⁠3+ years of professional backend development experience with Django (or similar Python frameworks)

•⁠ ⁠Hands‑on familiarity with OpenAI and Gemini (Google) APIs, including rate limits, auth flows and usage monitoring

•⁠ ⁠Deep understanding of security fundamentals: OWASP Top 10, encryption, key management, VPCs, IAM

•⁠ ⁠Proven track record of achieving and maintaining compliance with GDPR, SOC 2 and ISO 27001

Good‑to‑Have

•⁠ ⁠Prior work with Node.js or TypeScript-based micro-services.

•⁠ ⁠Experience with containerization (Docker, Kubernetes) and service meshes.

•⁠ ⁠Familiarity with SIEM tools (Splunk, ELK), vulnerability scanners (Qualys, Nessus).

•⁠ ⁠Certifications such as CISSP, CISM, or Certified Kubernetes Security Specialist (CKS).

•⁠ ⁠Knowledge of event-driven architectures / message brokers (RabbitMQ, Kafka).