GRC Platform Engineer contract San Jose CA/ Lehi UT (Onsite)

Role: GRC Platform Engineer

Location: San Jose CA/ Lehi UT (Onsite)

Duration: Long Term Contract

NOTES FROM SPOTLIGHT CALL:
** Need someone with Strong Node JS, React JS, Database Schema level understanding, Json**

Must Haves
• Strong hands-on experience in Python backend development with REST API development
• Experience building microservices-based applications using modern architectures
• Hands-on expertise with Docker, Kubernetes, and cloud platforms (AWS preferred)
• Strong understanding of GRC/compliance frameworks such as SOC2, ISO 27001, NIST, FedRAMP, etc.
• Experience building or supporting compliance automation, audit-ready systems, risk/control platforms, or governance workflows
• Strong knowledge of security implementation including RBAC, OAuth2/JWT, encryption, IAM, audit logging, and secure coding practices
• Experience integrating security/compliance controls into CI/CD pipelines (DevSecOps)

• Strong database experience with SQL/NoSQL (PostgreSQL, MongoDB, Oracle, etc.)
• Candidate should have a builder mindset — not just policy/audit experience, but actual engineering and system implementation experience
________________________________________
Good to Have
• Experience with Node.js / FastAPI / Flask
• Exposure to real-time compliance monitoring or governance platforms
• Experience in regulated environments such as banking, healthcare, fintech, or enterprise compliance systems
• Knowledge of Infrastructure as Code (Terraform, CloudFormation)
• Experience with monitoring/observability tools like Prometheus, Grafana, Datadog, CloudWatch
• Exposure to GenAI/AI-driven compliance automation
• Experience with data governance, lineage, and audit traceability systems
• Familiarity with Agile, DevSecOps, and secure SDLC practices
• Strong communication skills and ability to work with cross-functional security/compliance stakeholders
________________________________________
Important Screening Note for Vendors
We are specifically looking for a technical GRC Engineer profile with strong development and cloud engineering experience.
Pure GRC consultants, audit-only profiles, SOC analysts, or governance-only candidates without strong backend/system-building experience will not be considered.

GRC Engineer
Seeking a hands-on GRC Engineer with expertise in Python, API development, and modern architectures (microservices, Kubernetes, Docker). Must have experience building secure, scalable systems with strong database skills and understanding of compliance frameworks.

Skills: Digital : Node.js