Fulcrum is looking for a Full-Stack Developer (Node, React, MongoDB) to join our project!

About Fulcrum: We’re a team of tech-savvy, creative & passionate IT professionals. We’ve created a vibrant and performance-driven culture for ourselves where everyone is free to think & act outside the box. There are literally no limits to what you can do here, as long as we WOW our clients and OVER deliver what we promise.

We are now looking for FullStack developer for a 5-week contract for the project in cybersecurity domain. The main task is to implement Role-Based Access Control (RBAC) across our Compass platform (NodeJS + MongoDB backend, React frontend). You will own development of the RBAC framework end-to-end, aligning backend authorization, frontend visibility, and audit logging.

Team composition - CEO, CTO, DevLead, PO, QA

Main responsibilities:

Backend
- Extend MongoDB user schema to include role and permission attributes
- Inject role claims into JWT authentication
- Implement RBAC middleware for authorization (authz()) across protected routes in
NodeJS/Express
- Define and apply ROLE_PERMISSIONS for: Org Admin, Portfolio Owner, Product Owner,
Auditor, Engineer, Compliance Manager
- Harden JWT handling (expiry, signature verification)
- Generate structured audit logs for all authorization events

Frontend
- Implement role-aware UI gating in the React Console (conditional rendering, disabled
actions)
- Synchronize frontend constants with backend roles
- Provide demo users for each role
- Add user-friendly 401/403 error handling

Testing & Delivery
- Build automated backend and frontend test suites (≥ 80% coverage) integrated in CI
- Provide role verification demo accounts
- Deliver documentation: role hierarchy, admin guide, and PoV testing checklist
- Run final verification in our staging environment

Details:

Application form: