About this role
The Full Stack Engineer is a pivotal role responsible for the end-to-end design, development, deployment, and maintenance of scalable, high-performance, and secure web applications. This role combines application development (AI-assisted programming) with hands-on ownership of cloud infrastructure, ensuring reliable, secure, and scalable systems on Azure. The engineer would be working on PUB’s gen-AI assisted procurement-related web application as part of PUB’s AI initiative. Key responsibilities User Engagement & Requirements Gathering: • Conduct user testing sessions to gather valuable feedback on application functionality and user experience. • Actively engage with stakeholders and end-users to gather, refine, and translate product functionality requirements into technical specifications/ testable artifacts. AI-Assisted Development & Code Quality: • Own end-to-end application delivery (frontend, backend, and cloud), leveraging AI coding assistants to accelerate development while ensuring quality, scalability, and maintainability (DRY, modular design, separation of concerns). • Build responsive, accessible, and performant web interfaces, using AI to speed up development while retaining full ownership of architecture and reusability. • Design and operate secure, reliable, and observable backend services and APIs, guiding AI for boilerplate and tests while owning API contracts and data models. • Review and validate all AI-generated code, identifying hallucinations, logic flaws, and maintainability issues before integration. Cloud Architecture & Infrastructure: • Own the end-to-end design, implementation, and operation of Azure infrastructure, ensuring solutions are secure, scalable, highly available, and compliant by design. • Translate application and security requirements into well-architected Azure reference architectures, balancing performance, cost, and operational complexity. • Design and implement secure network topologies, including segmented VNets, subnet strategies, private connectivity patterns (Private Endpoints, VNet Integration) to eliminate public exposure of critical services , and network security enforcement using NSGs • Architect and deploy cloud-native application platforms, leveraging services such as: • Compute: Azure Kubernetes Service (AKS) • Integration: API Management (APIM) • Security: Key Vault, Managed Identities, Entra ID integration • Edge & Protection: Application Gateway, WAF • Storage: Azure Blob Storage, Azure PostgreSQL Flexible Server • Implement secure-by-default infrastructure patterns, including secret management and end-to-end encryption (in transit and at rest) DevOps: • Design, implement, and maintain full-stack CI/CD deployment strategies and pipelines, ensuring automated, compliant, and efficient release processes. Testing & Quality Assurance: • Establish comprehensive automated test strategies, including unit, integration, and end-to-end testing, ensuring high code coverage. • Resolve all identified software defects, bugs to maintain application stability and integrity. Security & Compliance: • Ensure adherence to IM8 compliance requirements and any other emerging organizational compliance mandates. • Implement and maintain comprehensive full-stack security measures, including robust authentication, authorization, API security, and frontend security best practices. • Establish regular SAST, SCA, container image, vulnerability scans and other regular security related scans and resolve identified security vulnerabilities according to compliance timeline. Qualifications & Experience Full Stack Development: • Degree or Diploma in Computer Science, Computer or Electronics Engineering, Information Technology, or related disciplines. • Experience with Git and modern branching workflows (GitFlow, trunk-based development). • Strong proficiency in both frontend and backend development. • Strong understanding of software engineering best practices (DRY, single responsibility principle, meaningful abstraction, testability) and the ability to enforce these standards within an AI-augmented development workflow. • Strong code review instincts — can catch hallucinations, logic errors, and security issues in AI output • Working in an agile release model, engineers must be adaptable and proactive to evolving requirements and user feedback. Technologies: • Next.js, TypeScript, React.js, UI component libraries (e.g., ShadCN, Tailwind CSS). • Experience with relational databases Security & Compliance: • Experience with IM8 compliance and system commissioning for government projects • Strong knowledge of frontend security (CSP, CORS, XSS prevention). • Experience with backend security (OAuth, JWT, API rate limiting, encryption). • Familiarity with cloud security (IAM, Secrets Management, OWASP Top 10). DevOps & Infrastructure: • Proven experience setting up and managing Azure infrastructure (refer to Azure services listed in the Cloud Architecture & Infrastructure of Key Responsibilities). • Experience with CI/CD pipelines using GitLab CI • Experience with containerization and orchestration (Docker, Kubernetes). Software Quality & Testing: • Experience with unit and integration testing (Jest, Cypress, Playwright, Pact). • Backend testing using Postman, Supertest, contract testing. Observability & Monitoring: • Experience implementing application performance monitoring (APM) tools (Prometheus, OpenTelemetry). • Knowledge of logging frameworks (ELK Stack, Loki, Fluentd) to track and debug issues across distributed systems. Backend Scalability & API Design: • Strong experience in API design principles • Knowledge of API rate limiting, caching strategies (Redis, Varnish), and performance optimizations. • Familiarity with backend service scalability strategies (horizontal scaling, autoscaling, load balancing). Bonus Experience (Added Advantage): • Experience with government procurement processes • Microsoft Certified: Azure Solutions Architect Expert • Microsoft Certified: Azure Security Engineer Associate
Also in Government Policy