Full-Stack Engineer (Identity & Security Engineer)

About Our Client

Servant is partnering with a forward-thinking organization focused on helping teams work smarter, not harder. By combining thoughtful strategy, intuitive tools, and a people-first mindset, enabling organizations to optimize how work gets done—improving efficiency, clarity, and outcomes across the business.

With a strong emphasis on collaboration and continuous improvement, our client partners closely with its customers to solve real-world challenges and deliver practical, scalable solutions. The team values curiosity, ownership, and impact, and is committed to building products and experiences that genuinely support the way people work today.

As our client continues to grow, they are investing in talented, mission-driven individuals who want to shape the future of work and make a meaningful difference for customers and teammates alike.

Role Summary

Our client is redefining how humans govern technology. As the Identity & Security Engineer, you will design and implement the identity, access, and security foundation of the Human-Led AI Orchestration Layer.

You will ensure that every Action Point™, AI decision, and workflow is securely authorized, auditable, and aligned with human intent. This role sits at the intersection of frontend, backend, and cloud security.

Everything you build is expected to be revenue-ready and enterprise-grade.

Key Responsibilities

Identity & Authentication

• Implement and manage authentication using Clerk across frontend and backend.
• Design RBAC and permission models aligned with human-led decision workflows.
• Implement secure session handling, JWT validation, and token lifecycles.

Backend & Frontend Integration

• Integrate identity flows with FastAPI (Python) backend services.
• Support secure authentication flows in React + TypeScript frontend applications.
• Ensure consistent authorization enforcement across APIs, services, agents, tools, and data access layers.

Security & Compliance

• Implement best practices for OAuth2, JWT, CORS, CSRF protection, and rate limiting.
• Harden APIs and identity boundaries for multi-tenant SaaS use cases.
• Document identity architecture and provide knowledge transfer to the team.

Agent & AI Action Security

• Design and implement identity and permission models for AI agents, tools, and automated workflows.
• Define and enforce capability-based permission scopes for agents (what actions they can take, on what data, in which contexts).
• Implement human-in-the-loop approval gates and policy enforcement points for sensitive or high-impact actions.
• Prevent privilege escalation, cross-tenant access, and unauthorized tool or data usage by agents.
• Design sandboxing and blast-radius containment strategies for semi-autonomous workflows.

• Hands-on experience implementing authentication and authorization in web applications.
• Strong experience with Clerk (or equivalent identity providers).
• Deep understanding of OAuth2, JWT, and session management.
• Experience with FastAPI (Python) backend systems.
• Frontend integration experience with React + TypeScript.
• Strong security fundamentals and threat-model awareness.
• Proficiency with Git and remote collaboration.

Preferred Qualifications

• Experience with Azure deployments and DevOps workflows.
• Familiarity with Infrastructure-as-Code.
• Experience implementing RBAC in multi-tenant SaaS platforms.
• Background securing workflow or decision-support systems.

Flexible Hours & Compensation

Our client offers a flexible work structure of 20–40 hours per week, depending on role scope and workload. This role is outcome-driven, not hour-tracked.

Compensation is provided as a fixed monthly stipend, aligned to responsibilities and expected ownership. The stipend remains consistent as long as commitments are met and performance remains strong.

This environment requires:

• Clear ownership and follow-through
• Proactive communication
• Consistent, high-quality delivery

Flexibility is paired with accountability—team members are trusted to manage their time while ensuring outcomes, team continuity, and customer commitments are fully upheld.