Job Listing: Backend Web Developer (MERN Stack & Chrome Extensions)
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status,
Location: Fully Remote (Global)
Position: Full-Time
About Us
Apex Solutions is building the next generation of web productivity tools. Our browser extensions empower thousands of users to work smarter and safer online. We’re a fully distributed team passionate about creating elegant, secure, and high-performance software.
The Role
We are looking for a skilled Backend Web Developer with a strong foundation in the MERN stack to own and evolve the backend services that power our suite of Chrome extensions. Your primary focus will be on designing, building, and securing APIs, managing data with MongoDB, and ensuring the robustness of our server-side logic. While our frontend team handles the extension UIs, your work will be the critical engine that makes everything possible.
Key Responsibilities
Design, develop, and maintain secure and scalable backend services for our Chrome extensions using Node.js, Express, and MongoDB.
Write efficient database schemas and queries using Mongoose.
Build robust RESTful APIs that are consumed by our extension frontends and other services.
Implement and uphold stringent security best practices across all backend code.
Collaborate with frontend developers to define API contracts and ensure seamless integration.
Proactively identify and mitigate potential security vulnerabilities.
Required Skills & Qualifications
Proven experience with the MERN Stack:
Strong proficiency in vanilla JavaScript (ES6+).
Solid experience with Node.js and a framework like Express.js.
Hands-on experience with MongoDB and the Mongoose ODM.
Foundational Web Security Knowledge: You must understand the following vulnerabilities and know how to safeguard against them in a Node.js/Express environment:
Injection Attacks (e.g., NoSQL Injection)
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
Denial-of-Service (DoS) Attacks
Compromising Authentication (e.g., secure session management, JWT)
Session Hijacking
Information Leaks (through headers, error messages, etc.)
Proficiency in CSS for understanding frontend constraints and occasionally collaborating on UI logic.
Experience with version control (Git).
A strong focus on writing clean, documented, and testable code.
Excellent problem-solving skills and the ability to work independently in a fully remote environment.
Nice-to-Have Skills
Experience developing or working with Chrome Extensions and their backend architecture.
Knowledge of React (to better collaborate with the frontend team).
Familiarity with securing APIs against XML-based attacks.
Experience with cloud platforms like AWS, Google Cloud, or Azure.
Understanding of Docker and containerization.
What We Offer
A fully remote, flexible work environment.
Competitive salary and equity package.
Health, dental, and vision insurance (region-dependent).
Generous paid time off and holiday schedule.
Budget for home office setup and professional development.
Opportunity to make a significant impact on a product used by a growing global user base.
How to Apply
Please subscribe to this substack. You will then be contacted to your email on how to proceed to the next step which can either be:
send your resume and a cover letter to us
setting up an online interview
If you are a subscriber, you will be contacted and given directions on how to send your CV/ get interviewed.
In your cover letter, you will be required to briefly describe your experience with securing a Node.js backend against one specific type of attack mentioned in this listing (e.g., Injection, XSS, CSRF).
If you are not familiar with the above topics, we suggest you do so before the interview:
Resources that interview questions will come from include:
PortSwigger academy (free) - here
hackers handbook ($18) - here
i am interested
Interested