WeDo Tech Enterprises Limited is seeking a highly skilled Backend Engineer (Python/Django) to design, build, and maintain the secure, compliant, and high-performance backend that powers our regulated financial platform. This role involves developing advanced business logic for AML/CTF screening, sanctions workflows, onboarding flows, payment execution, wallet operations, and full RBAC enforcement.

You will play a central role in shaping core backend services, ensuring strong security, reliability, and regulatory alignment across the entire system.

Key Responsibilities

1. API & Service Layer Development

• Design and implement robust REST API endpoints using Django and Django REST Framework (DRF).
• Build structured service layers supporting core regulated workflows, including:
  • AML/CTF screening and rules engines
  • KYC/KYB onboarding flows
  • Sanctions checks and trigger mechanisms
  • Payment execution and transaction lifecycle logic
  • Role-Based Access Control (RBAC) and permission enforcement
  • Audit logging and event stream generation
  • Incident and anomaly reporting
• Ensure strict adherence to API reliability, idempotency, validation, and security controls.

2. Database Engineering

• Work with PostgreSQL (Cloud SQL Enterprise) to design and optimize scalable schemas.
• Implement and maintain database models, migrations, relations, and indexing strategies.
• Optimize SQL queries and ORM logic for high-load production environments.
• Maintain data integrity, encryption, and regulatory data-retention standards.

3. Backend Security & Hardening

• Implement backend security best practices, including:
  • Granular permissions and RBAC enforcement
  • Token-based authentication and session management
  • Input validation, sanitization, and anti-tampering methods
  • Encrypted storage for sensitive data (e.g., PII, onboarding documents)
• Build and maintain forensic-quality audit and event logs, essential for AML traceability and payment operations.

4. Cloud, Infrastructure & Reliability

• Collaborate with DevOps on backend deployments running on GCP Cloud Run.
• Ensure proper service isolation via VPC, private SQL, IAM roles, and Secrets Manager.
• Support platform observability, including logs, metrics, alerts, and distributed tracing.
• Participate in incident resolution, root-cause analysis, and performance tuning.

5. Compliance-Aligned Engineering

• Build backend flows that align with regulatory requirements, including:
  • AML/CTF frameworks
  • MiCA (Markets in Crypto-Assets)
  • Travel Rule compliance for crypto transfers
  • Banco de Portugal supervisory expectations
• Ensure auditability, correctness, and explainability of all compliance-related logic.

6. Requirements

• 4+ years professional experience with Python and Django.
• Strong expertise with:
  • Django ORM
  • Django REST Framework
  • Serializers, signals, middleware
• Hands-on experience with PostgreSQL in production environments.
• Proven understanding of secure backend development principles.
• Experience building and maintaining multi-environment production systems.
• Knowledge of API authentication, secrets management, and secure session handling.
• Familiarity with Git, Bitbucket, CI/CD pipelines, and modern development workflows.

7. Candidates will have an added advantage if they have:

• Experience with blockchain / crypto, custody, or transaction flows.
• Knowledge of Google Cloud Platform and Cloud Run.
• Background in regulated fintech, compliance-driven platforms, or financial services.

8. Personal Characteristics

• Strong security-first mindset.
• Highly responsible, reliable, and detail-oriented.
• Excellent problem-solving ability across complex backend systems.
• Comfortable owning backend services end-to-end, from design to maintenance.

• Design and implement robust REST API endpoints using Django and Django REST Framework (DRF).
• Build structured service layers supporting core regulated workflows, including:
  • AML/CTF screening and rules engines
  • KYC/KYB onboarding flows
  • Sanctions checks and trigger mechanisms
  • Payment execution and transaction lifecycle logic
  • Role-Based Access Control (RBAC) and permission enforcement
  • Audit logging and event stream generation
  • Incident and anomaly reporting
• Ensure strict adherence to API reliability, idempotency, validation, and security controls.
• Work with PostgreSQL (Cloud SQL Enterprise) to design and optimize scalable schemas.
• Implement and maintain database models, migrations, relations, and indexing strategies.
• Optimize SQL queries and ORM logic for high-load production environments.
• Maintain data integrity, encryption, and regulatory data-retention standards.
• Implement backend security best practices, including:
  • Granular permissions and RBAC enforcement
  • Token-based authentication and session management
  • Input validation, sanitization, and anti-tampering methods
  • Encrypted storage for sensitive data (e.g., PII, onboarding documents)
• Build and maintain forensic-quality audit and event logs, essential for AML traceability and payment operations.
• Collaborate with DevOps on backend deployments running on GCP Cloud Run.
• Ensure proper service isolation via VPC, private SQL, IAM roles, and Secrets Manager.
• Support platform observability, including logs, metrics, alerts, and distributed tracing.
• Participate in incident resolution, root-cause analysis, and performance tuning.
• Build backend flows that align with regulatory requirements, including:
  • AML/CTF frameworks
  • MiCA (Markets in Crypto-Assets)
  • Travel Rule compliance for crypto transfers
  • Banco de Portugal supervisory expectations
• Ensure auditability, correctness, and explainability of all compliance-related logic.

• Python
• Django
• Django ORM
• Django REST Framework
• Serializers
• Signals
• Middleware
• PostgreSQL
• Secure backend development principles
• API authentication
• Secrets management
• Secure session handling
• Git
• Bitbucket
• CI/CD pipelines
• Blockchain / crypto (advantage)
• Google Cloud Platform (advantage)
• Cloud Run (advantage)

• 4+ years professional experience with Python and Django.
• Strong expertise with Django ORM, Django REST Framework, Serializers, Signals, Middleware.
• Hands-on experience with PostgreSQL in production environments.
• Proven understanding of secure backend development principles.
• Experience building and maintaining multi-environment production systems.
• Knowledge of API authentication, secrets management, and secure session handling.
• Familiarity with Git, Bitbucket, CI/CD pipelines, and modern development workflows.
• Experience with blockchain / crypto, custody, or transaction flows (added advantage).
• Knowledge of Google Cloud Platform and Cloud Run (added advantage).
• Background in regulated fintech, compliance-driven platforms, or financial services (added advantage).