Full Stack Developer - GRC Engineering

Job Description: GRC Software EngineerLocation: Remote (Continental US, excluding CA, CO, NY, WA) Reports to: GRC Engineering ManagerAbout WellHiveWellHive is a FedRAMP High-authorized healthcare SaaS company specializing in Care Navigation solutions. We operate critical scheduling infrastructure for 130 VA healthcare facilities and provide analytics platforms for federal healthcare organizations. We're building out our compliance engineering capabilities to support FedRAMP High authorization and multi-framework expansion.The RoleWe're building a new GRC Engineering team to automate compliance at scale. As a GRC Software Engineer, you'll be a full-stack engineer building systems that collect evidence, store and manage compliance data, validate controls, and provide visibility into our compliance posture. You'll own entire features end-to-end—from designing data pipelines and storage systems to building APIs and user interfaces.This is a software engineering role where compliance is the domain. You'll work on challenging technical problems like automated evidence collection from AWS infrastructure, OSCAL-formatted compliance artifacts, control mapping across multiple frameworks, audit-ready data storage, continuous control validation, and self-service compliance tooling for engineering teams.What You'll DoBuild End-to-End SystemsDevelop evidence collection pipelines from AWS services, application logs, CI/CD systems, and operational toolsDesign and implement data storage systems that meet audit retention and queryability requirementsBuild control-to-evidence mapping databases that support multiple compliance frameworksCreate APIs and integrations between GRC platforms and operational systemsDevelop web interfaces, dashboards, and self-service tools for compliance workflowsOwn the Full StackDesign data models and schemas for compliance evidence and control mappingsBuild ETL/ELT pipelines that collect, transform, validate, and store compliance dataImplement automated control testing frameworks with continuous validationCreate reporting systems and artifact generation for audit and assessment purposesDevelop infrastructure-as-code for compliance monitoring and evidence collectionEnable Continuous ComplianceBuild real-time dashboards and alerting for compliance posture visibilityImplement OSCAL-compliant data outputs and machine-readable compliance artifactsCreate data quality monitoring and validation for evidence integrityDevelop tools that let engineering teams understand and check compliance requirementsBuild versioning and audit trails into compliance data systemsCollaborate & ImprovePartner with security, platform, and product engineering teams to understand requirementsWork with the GRC team lead to make build vs. buy decisionsContribute to technical architecture and system design discussionsDocument systems and create runbooks for operational handoffWhat You'll BringRequired3 years as a software engineer, full-stack engineer, or similar technical roleStrong coding skills in Typescript, Python, Go, or similar languagesExperience building both backend systems (APIs, data pipelines, storage) and frontend interfacesSolid understanding of databases, data modeling, and SQLWorking knowledge of AWS services and cloud architectureFamiliarity with infrastructure-as-code (Terraform, CloudFormation, or similar)Basic understanding of security controls and compliance conceptsStrong problem-solving skills and ability to own projects end-to-endUS citizenship or permanent residency requiredStrongly PreferredExperience building data pipelines or ETL workflowsPrior work in security engineering, DevSecOps, or compliance automationFamiliarity with FedRAMP, NIST SP 800-53, or other compliance frameworksBackground working in regulated industries (healthcare, government, finance)Experience with data governance, audit trails, or evidence management systemsKnowledge of OSCAL or other compliance-as-code formatsExperience building internal tools or developer platformsWhat Makes You Stand OutYou've built systems for security, compliance, or audit use casesYou're comfortable with both data engineering and application developmentYou can translate compliance requirements into technical specificationsYou understand the balance between engineering pragmatism and audit requirementsYou enjoy building tools that solve real problems and make other people's jobs easierYou're comfortable working across the stack from data models to user interfacesWhy This Role MattersYou'll be joining a team that's building compliance automation infrastructure from the ground up. Your work will directly reduce operational burden, increase compliance accuracy, and position WellHive to scale across multiple frameworks and markets. You'll own meaningful technical problems and have significant influence on how compliance engineering works at WellHive. If you enjoy building systems that have clear impact beyond your immediate codebase, this role offers real ownership and visibility.Other DetailsWork hours overlapping with Eastern time zoneHigh-speed internet connection requiredWhat We OfferCompetitive compensation targeting mid-high market ratesRemote-first culture with flexible work arrangementsOpportunity to work on greenfield projects with significant ownershipExposure to federal compliance and security engineering practicesWork on problems that span the full technical stackSecurityPrivacyTermsPowered by JazzHR3MkDcdIgUe

Salary : $140,000 - $200,000