Senior Django/DRF Engineer

Role Overview

This is a review-and-report engagement: the deliverable is a written, severity-ranked findings report — our team implements any resulting fixes, so no changes to our codebase are expected from the reviewer. A detailed reviewer brief (scope, file map, and what's already tested) is provided on engagement, and an NDA is required before repository access.

Responsibilities

• Perform an in-depth code review to identify security vulnerabilities, access-control gaps, and performance risks (identify and recommend — implementation is handled by our team).
• Assess the role- and country-based permission system and flag weaknesses in how it's enforced.
• Review the authentication and access-control composition across modules, with attention to how the pieces interact — not just each in isolation.
• Evaluate production-scale query paths for N+1s and scalability issues that won't surface at small dev scale.
• Compile a severity-ranked findings report — each finding with location, the issue, and a recommended fix. This report is the primary deliverable.

Required Skills

• Extensive experience with Django 6 and Django Rest Framework (DRF).
• Proficient in working with Postgres databases.
• Strong understanding of security best practices and access-control systems.
• Ability to conduct comprehensive code reviews and produce detailed technical reports.

Nice to Have

• Experience with large-scale production environments.
• Prior involvement in developing or reviewing role-based access control systems.