About the Role
We are looking for a Junior Full Stack Engineer to join our engineering team. You will work across the stack — backend services, APIs, and modern web UIs — on features that medical device manufacturers and their security teams rely on every day.

This is a junior role designed for someone with roughly 1 year of professional engineering experience (or a strong bootcamp or CS graduate with internship experience). You will be paired with senior engineers, mentored through code review and design discussion, and given real ownership of features from day one. We are not looking for someone who already knows everything — we are looking for someone who learns quickly, writes clear code, and cares about the craft and is able to effectively manage their time remotely and with a high degree of autonomy and accountability.

What You'll Do

• Build and ship features across MedCrypt's product portfolio — backend APIs, data pipelines, and modern web applications.
• Work on real customer problems in medical device cybersecurity: runtime monitoring, SBOM ingestion and parsing, vulnerability matching and enrichment, regulatory reporting, and CI/CD integrations.
• Write clean, tested code — including unit, integration, and end-to-end tests. Participate in peer code review and contribute thoughtful reviews of your teammates' work.
• Design and execute manual and automated test plans to validate new features and catch regressions before they reach production.
• Help maintain and improve our public APIs which customers integrate into their development workflows, including ensuring API reliability and correctness through rigorous testing.
• Collaborate with product, design, and customer success to scope features, define acceptance criteria, and turn customer feedback into shipped improvements.
• Participate in on-call rotation (with senior support) once you are ramped up, and help triage, reproduce, and resolve production issues.
• Contribute to our engineering culture — documentation, retrospectives, test strategy, and continuous improvement of how we build software.

What We're Looking For

• 1 year of professional software engineering experience, OR a CS degree plus relevant internship/project experience, OR equivalent demonstrated skill (bootcamp graduates with strong portfolios welcome).
• Comfortable writing code in at least one modern backend language (Python, Node.js/TypeScript, Go, or similar) and willing to learn ours.
• Familiarity with JavaScript and a modern frontend framework — ideally React.
• Working knowledge of relational databases (Postgres or similar) and writing reasonable SQL.
• Comfortable with Git, pull requests, code review, and working in a CI/CD environment.
• Experience writing automated tests — unit, integration, or end-to-end — and understanding of what makes a test suite trustworthy and maintainable.
• Curious, communicative, and comfortable saying "I don't know — let me find out." Strong written communication matters here; we are a distributed team.
• Experience with AWS (we run on AWS — ECS, RDS, Lambda, S3, CloudHSM, GuardDuty, etc.).
• Exposure to REST API design, OpenAPI/Swagger, or SDK development.
• Familiarity with testing frameworks and tools (pytest, Jest, Playwright, Cypress, or similar) and experience building or maintaining CI test pipelines.
• Familiarity with SBOM formats (CycloneDX, SPDX), the NVD, CISA KEV, or any prior work in application security / supply chain security.
• Experience working in a regulated industry (healthcare, fintech, aerospace) or with quality management systems, including an understanding of how software testing intersects with regulatory compliance.
• Contributions to open-source projects.
• Comfort with infrastructure-as-code (Terraform) or container workflows (Docker).

How We Support Junior Engineers

• Pairing and mentorship from senior engineers as a normal part of the work, not an afterthought.
• A clear ramp plan for your first 30/60/90 days, with explicit checkpoints.
• Code review as a teaching tool, not a gate. Expect detailed, constructive feedback.
• Direct exposure to customers and regulators. You will learn what medical device cybersecurity actually looks like in practice.

Benefits:
Fully remote work
Health insurance
Progressive parental and paid family leave
Unlimited vacation policy
Market salaries
401k match
High degree of autonomy

Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification in the job posting. At Medcrypt we are committed to creating a diverse and inclusive environment so we strongly encourage you to apply even if you don't believe you meet every single qualification outlined.

To apply, please forward your resume to [email hidden] with the role in the subject line.

About the interview

We do not use AI tools to screen for applicants. All applicants will be reviewed by a real human. Only candidates selected for an interview will be contacted.

Phase 1: 20 minute call with internal recruitment team

Phase 2: 45 minute interview with hiring manager

Phase 3: 60 minute panel technical interview