The Role
The frontend of a security product carries a different kind of weight — UX failures here aren’t just friction, they’re risk. You’ll lead a team of 4–6 engineers, own the frontend architecture, and be the person who keeps the product coherent across web apps and design systems. The split is real: roughly 80–90% of your work is frontend; the remaining 10–20% is Node.js/TypeScript for the APIs that sit in your team’s scope. A dedicated backend team of five handles everything beyond that boundary.
About the Product
A cybersecurity platform built around browser-side security — web apps used in real security operations, built to be fast, hardened, and accessible. The product touches sensitive workflows where performance and correctness aren’t optional. The frontend layer is load-bearing.
The Stack: The frontend is React/Next.js. Node.js/TypeScript covers the APIs within the frontend team’s scope — the rest of the backend is owned by a separate five-person team. The product runs across web applications in a security context, which means performance optimization and security hardening (CSP, XSS prevention, secure auth flows) are structural concerns, not afterthoughts.
What You’ll Be Doing
- Define and evolve the frontend architecture — component library, design system, shared standards — across web applications used in security operations
- Lead the team technically: architectural reviews, technical planning, agile ceremonies, and direct mentoring of 4–6 frontend/fullstack engineers
- Work closely with Product to translate requirements into technical decisions — this is a collaboration that shapes the roadmap, not just ticket intake
- Build and maintain the design system and Figma-to-code workflow; own the shared component layer that every engineer on the team builds on
- Apply and enforce frontend security practices — CSP, XSS prevention, secure auth flows — on a product where these are non-negotiable
- Optimize for performance: code splitting, lazy loading, bundle analysis, keeping the product fast as it grows
- Integrate and champion AI coding tools within the team’s workflow — this is a real expectation, not a future consideration
- Build Node.js/TypeScript APIs in your team’s scope; coordinate at the boundary with the backend team where needed
What We Expect
Must-Have
- 7+ years in frontend or fullstack development
- 2+ years in a technical or team lead role — with real accountability for team output and architecture decisions
- Strong, hands-on expertise in React/Next.js — you write the hard parts, not just review them
- Demonstrated experience building design systems and shared component libraries
- Strong collaboration with Product — you’ve worked in environments where engineers and PMs co-own decisions
- Practical experience with AI coding tools in day-to-day development
- English B2+
Nice to Have
- Cybersecurity product background — understanding of secure browsing, isolation, or web threat protection
- Experience with identity and auth systems (authentication, authorization, identity management)
- Meaningful backend depth beyond basic API development
- Monorepo experience (Nx, Turborepo)
Why This Role Is Worth Your Time
- You own the frontend architecture on a security-critical product — decisions you make will be in production and won’t be second-guessed by a committee
- Small, focused team with real autonomy; a larger backend team handles the infrastructure boundary so you’re not spread thin
- Direct collaboration with Product and CTO — short loops, real influence on what gets built and how
- A domain where frontend quality has measurable security consequences — the work has stakes
