Senior Backend Engineer (f / m / x) in Cybersecurity Start-up

Location : Flexible (Office / Remote / Hybrid / EU-based preferred)

Company : CyberDesk

Type : Full-time | Early-stage team | Equity available

About CyberDesk

AI agents, ephemeral cloud services, and machine-to-machine interactions are breaking traditional access control models. At CyberDesk , we’re building an intelligent platform to dynamically manage access — across humans, systems, and APIs — with risk-aware, policy-driven decisions.

We combine identity metadata, access graphs, and real-time risk scoring to enforce least-privilege access at scale. Our backend stack is designed to evaluate and authorize actions in milliseconds, integrating with identity providers, cloud services, and enterprise environments — all while remaining compliant with NIS2, DORA, and GDPR.

The Opportunity

We’re looking for a Senior Backend Engineer to architect and scale our access decision engine, integrate external identity providers, and build our authorization graph infrastructure. This is a deeply technical role at the heart of our platform.

Your Responsibilities

• Build and maintain a scalable, testable, and extensible backend using TypeScript and Bun.js in a modern, modular codebase.
• Design and implement integrations with third-party SaaS APIs (e.g., Google Drive , Microsoft 365 , SharePoint ) to support federated data access and identity mapping.
• Develop cloud-native infrastructure and backend components using AWS services : Lambda, SQS, S3, DynamoDB, OpenSearch, Secrets Manager.
• Collaborate with product and security teams to evolve serverless and event-driven architecture for real-time access control decisions.
• Support the secure processing of regulated data , including NHI (National Health Identifiers) and PHI (Protected Health Information) , with strong focus on data protection and compliance.

What You Bring

• 3–5 years of backend development experience, with a strong foundation in TypeScript and familiarity with Bun.js or Node.js runtime environments.
• Experience building secure, cloud-native applications and API-driven systems at scale.
• Solid grasp of authentication flows and identity protocols (OAuth2, OpenID Connect, SAML).
• Comfortable with infrastructure-as-code , event-based systems, and REST / gRPC API design.
• Open-mindedness to work with Python when needed — e.g., for AI / ML model integration.

Nice to Have

• Experience working with Azure or Google Cloud Platform (GCP) in addition to AWS.
• Prior experience handling regulated data types (e.g., NHI, PHI, PII) and meeting compliance standards (e.g., HIPAA, GDPR).
• Python experience (scripts, services, or integrations) alongside your TypeScript expertise.
• Familiarity with policy engines or graph-based access control systems.
• First experience contributing to AI-enabled cybersecurity products , such as anomaly detection or behavior-based access logic.

Why CyberDesk?

• Foundational role : Build the authorization backend that powers dynamic access for humans and machines.
• Deep tech : Join a team that obsesses over low-latency policy evaluation and scalable security architectures.
• Flexible setup : Remote-first culture, async collaboration, strong documentation.
• Equity & growth : Be an early team member in a fast-scaling company backed by EU cyber initiatives.
• Early-stage equity — meaningful ownership in a fast-growing deeptech startup.
• Annual team retreat — in-person strategy & bonding time in inspiring locations - this year we will meet in Georgia!
• Founders-level visibility — direct access to decision-making and strategic discussions.
• Tech gear — budget to set up your ideal remote workspace.
• One moving day per year — take the day off to relocate, stress-free and uninterrupted.
• Learning & development budget — for conferences, certifications, or online courses (e.g., AI, cybersecurity, product leadership).
• Health or transport stipend — monthly allowance for your fitness or public transport.

Our Hiring Process (Fast, Friendly & Founder-Led)

• You Apply : Send us your resume, portfolio, or anything you think we should see. We (founders & team) review it directly — not an algorithm.
• Intro Call : Let's get to know each other and discuss any initial questions and expectations from your side (timeline, location, salary etc.).
• Team Chat : A 20–30 min conversation (core team member) to learn more about you, your goals, and what you’re looking for in your next role.
• Technical Task or Live Session : You'll either complete a short, relevant task or join a live session where we problem-solve together.
• Final Chat with a Founder : We align on values, expectations, and what success looks like — then move fast if it’s a fit.

How to Apply

Send your resume or GitHub / LinkedIn profile to [emailprotected] or apply directly via LinkedIn. Bonus : Tell us your favorite access control model — and why it works (or doesn’t) at scale.

Senior Backend Engineer • Munich, Bavaria, Germany