About Our Client Servant is partnering with a forward-thinking organization focused on helping teams work smarter, not harder. By combining thoughtful strategy, intuitive tools, and a people‑first mindset, they enable organizations to optimize how work gets done—improving efficiency, clarity, and outcomes across the business. With a strong emphasis on collaboration and continuous improvement, our client partners closely with its customers to solve real‑world challenges and deliver practical, scalable solutions. The team values curiosity, ownership, and impact, and is committed to building products and experiences that genuinely support the way people work today. As our client continues to grow, they are investing in talented, mission‑driven individuals who want to shape the future of work and make a meaningful difference for customers and teammates alike. Role Summary Our client is redefining how humans govern technology. As the Identity & Security Engineer, you will design and implement the identity, access, and security foundation of the Human‑Led AI Orchestration Layer. You will ensure that every Action Point, AI decision, and workflow is securely authorized, auditable, and aligned with human intent. This role sits at the intersection of frontend, backend, and cloud security. Everything you build is expected to be revenue‑ready and enterprise‑grade. Key Responsibilities Identity & Authentication Implement and manage authentication using Clerk across frontend and backend Design RBAC and permission models aligned with human‑led decision workflows Implement secure session handling, JWT validation, and token lifecycles Backend & Frontend Integration Integrate identity flows with FastAPI (Python) backend services Support secure authentication flows in React & TypeScript frontend applications Ensure consistent authorization enforcement across APIs, services, agents, tools, and data access layers Security & Compliance Implement best practices for OAuth2, JWT, CORS, CSRF protection, and rate limiting Harden APIs and identity boundaries for multi‑tenant SaaS use cases Document identity architecture and provide knowledge transfer to the team Agent & AI Action Security Design and implement identity and permission models for AI agents, tools, and automated workflows Define and enforce capability‑based permission scopes for agents (what actions they can take, on what data, in which contexts) Implement human‑in‑the‑loop approval gates and policy enforcement points for sensitive or high‑impact actions Prevent privilege escalation, cross‑tenant access, and unauthorized tool or data usage by agents Design sandboxing and blast‑radius containment strategies for semi‑autonomous workflows Requirements Hands‑on experience implementing authentication and authorization in web applications Strong experience with Clerk (or equivalent identity providers) Deep understanding of OAuth2, JWT, and session management Experience with FastAPI (Python) backend systems Frontend integration experience with React & TypeScript Strong security fundamentals and threat‑model awareness Proficiency with Git and remote collaboration Preferred Qualifications Experience with Azure deployments and DevOps workflows Familiarity with Infrastructure‑as‑Code Experience implementing RBAC in multi‑tenant SaaS platforms Background securing workflow or decision‑support systems Benefits Flexible Hours & Compensation Our client offers a flexible work structure of 20‑40 hours per week, depending on role scope and workload. This role is outcome‑driven, not hour‑tracked. Compensation is provided as a fixed monthly stipend, aligned to responsibilities and expected ownership. The stipend remains consistent as long as commitments are met and performance remains strong. This environment requires: Clear ownership and follow‑through Proactive communication Consistent, high‑quality delivery Flexibility is paired with accountability—team members are trusted to manage their time while ensuring outcomes, team continuity, and customer commitments are fully upheld. #J-18808-Ljbffr
Full-Stack Engineer (Identity & Security Engineer)
SERVANT
Remote, Remote
Publicado hace 11 días
Denunciar empleo