🌀 The Company

Filigran, founded in October 2022, stands out in the cybertech ecosystem for its commitment to revolutionizing cyber threat management with a proactive approach. Its mission is to develop innovative open-source solutions designed to anticipate cyber threats, identify security gaps, and strengthen organizational security posture.

Filigran solutions are now trusted by over 6,000 public and private organizations worldwide.

🎯 The Role

We're looking for a Staff / Lead Software Engineer to be the technical founding pillar of our new OpenGRC team.

You'll work closely with the Engineering Manager and a small, agile squad to define the technical architecture and build the MVP. You will define the technical strategy, system architecture, and engineering standards for a solution that turns abstract threat data into verified, quantified action plans.

You will balance hands-on coding of the most complex components with high-level architectural decision-making, setting the trajectory for a scalable Open Source product.

💼 Your Responsibilities

• Technical Vision & Architecture: Own the technical roadmap and system design. You will architect a clean, scalable Single Page App (SPA) and event-driven backend (Node.js/TypeScript) capable of deployment as both SaaS and On-Premise. You will anticipate scaling challenges related to heavy data ingestion and cross-platform integrations.

• Core Engine Ownership: Architect and drive the implementation of the complex engines that differentiate OpenGRC:

  • Correlation Engine: Designing logic to link CTI feeds (STIX objects) to internal Assets and Controls.

  • Quantification Engine: Creating the mathematical models and algorithms to calculate financial risk dynamically based on changing threat landscapes.

• Engineering Standards & Mentorship: As a Lead, you will set the bar for code quality, testing patterns, and documentation. You will mentor future hires, conduct code reviews, and foster a culture of technical excellence and psychological safety.

• Strategic Product Engineering: Partner with Product Management to translate business goals into technical reality. You will play a key role in defining domain models for "Threat Contexts" and "Risk Scenarios," ensuring the technology can support future "What-If" simulations.

• Ecosystem Integration: Lead the technical alignment with the wider ecosystem (OpenCTI, OpenAEV). You will ensure OpenGRC integrates seamlessly with these platforms, requiring deep collaboration with Principal Engineers across the organization.

• Open Source Leadership: Act as the technical face of OpenGRC in the open-source community. You will engage with contributors on GitHub/Slack, guide community architecture decisions, and manage external contributions.

🤝 Who You’ll Work With

• Direct report: You will report to the Engineering Manager of OpenGRC.

• Team: You will lead the technical execution of the initial squad, with plans for the team to grow rapidly.

• Collaboration: You will operate as a peer to the VP of Tech, CTO, and Principal Engineers, aligning on organization-wide technical standards and integration strategies.

🧬 Profile We’re Looking For

• Experience: 10+ years of experience in Software Engineering, with significant proven experience in mentoring software teams and leading technical topics.

• Staff/Tech Lead Experience: You have a proven track record of designing and delivering complex systems from scratch. You have experience not just contributing to codebases, but owning the architecture and technical health of a product.

• System Design Mastery: You excel at data modeling (Entities, Relationships) and designing distributed systems. You can articulate the trade-offs between different architectural patterns (SQL vs NoSQL, Event-driven vs REST, etc.) and make decisions that balance speed of delivery with long-term maintainability.

• Full Stack Expertise: Deep proficiency in React, TypeScript, and Node.js. You can bridge a distributed SQL backend handling massive scale with a high-performance, intuitive React UI. You understand the nuances of end-to-end type safety and performance optimization.

• Product-Minded Leader: You understand the "Why" behind the code. You are comfortable navigating ambiguity in the early POC phase and can pivot the technical strategy based on user feedback without losing sight of the long-term vision.

• Communication & Influence: Fluent in English and French. You can explain complex technical concepts to non-technical stakeholders and advocate for technical investments (refactoring, tooling) effectively.

• Remote DNA: Comfortable working in a remote, async-first environment. You know how to communicate effectively in writing and document your decisions.

Bonus Points:

• Previous experience in GRC (Governance, Risk, Compliance) or Cybersecurity sectors.

• Familiarity with Cyber Threat Intelligence (CTI) standards like STIX/TAXII or the MITRE ATT&CK framework.

• Interest in quantitative risk methodologies (e.g., FAIR model).

• Experience maintaining or leading Open Source projects.

• While our core stack is JS/TS, Python skills are highly valued for data processing scripts and tooling.

🛡️ About OpenGRC

OpenGRC is a new initiative designed to disrupt the Governance, Risk, and Compliance market. Unlike traditional GRC tools that rely on static checklists and subjective "High/Medium/Low" assessments, OpenGRC is built to be proactive, data-driven, and financially quantified.

Our vision is to fuse Cyber Threat Intelligence (CTI) with Risk Management. We enable CISOs to correlate real-time threat feeds (via OpenCTI) with their internal assets, verify defenses automatically (via OpenAEV), and translate technical vulnerabilities into dollars. We are building the bridge between the SOC technical reality and the Boardroom's financial language.

🌱 Why Join Filigran? More than just a job.

We’re a fast-growing, global, and fully remote company on a mission to empower defense teams to be proactive — through open-source solutions that uncover threats and drive action.

• ⭐ What we believe

  We believe we do work that matters — uniting defenders into a global community to make security more open, resilient & collaborative.

• 💻 How we work

  That belief fuels how we work — with focus, clarity and high standards. Always with care and respect, never with ego.

• 🧭 What guides us

  That focus and care is grounded in our CORE values: Cohesion, Openness, Responsibility, and Equity — the compass that guides our decisions, collaborations, and growth, even when no one’s watching.

💰 Compensation & Benefits

• Competitive pay + equity — everyone shares in our success

• Remote-first, flexible, and balanced — work that fits your life

• Your setup, your choice — pick the gear that works for you

🌍 Equal Employment Opportunity

We enable cybersecurity through inclusion — from code to culture.

At Filigran, we are proud to be an equal opportunity employer. We believe diversity of our people make our products and our team stronger. We welcome talent of every background, identity, and lived experience — regardless of race, color, religion, gender, gender identity or expression, sexual orientation, national origin, age, disability, or veteran status.

What matters here is what you bring — not what you look like, where you’re from, or how you identify.

🚀 Ready to Join Us?

Apply now and help us build the future of the cybersecurity ecosystem — together.