Senior Full Stack SaaS Engineer

SENIOR FULL STACK SAAS ENGINEER (SUPABASE / NEXT.JS / POSTGRESQL) ABOUT ICRI ICRI (Indigenous and Community Readiness Infrastructure) is a production-stage SaaS platform developed by Regional Advantage Group. The platform is designed to make supplier readiness, participation commitments, procurement obligations, supplier development outcomes, governance requirements and policy compliance visible, measurable and auditable. ICRI operates at the intersection of procurement, supplier readiness, governance, participation assurance, evidence management, compliance reporting, Indigenous Participation Policy (IPP), Queensland Minimum Mandatory Requirements (MMR), major project delivery and supply chain visibility. The platform has already been built and is operational. This engagement is focused on helping finalise, harden and prepare the platform for scaled onboarding and production growth. ENGAGEMENT OVERVIEW We are seeking a highly capable Senior Full Stack SaaS Engineer for a focused platform completion and production readiness sprint. This is not a greenfield project. This is not a prototype. This is not a design exercise. The successful candidate will work inside an existing production codebase and assist with platform completion, onboarding readiness, security validation, architecture review and operational hardening. You must be comfortable entering an existing system, understanding architecture quickly and delivering outcomes with minimal supervision. TECHNOLOGY ENVIRONMENT Frontend • React • Next.js • TypeScript • Tailwind CSS Backend • Node.js • PostgreSQL • REST APIs • GraphQL experience advantageous Infrastructure • Supabase • Vercel • GitHub • CI/CD pipelines Security • Row Level Security (RLS) • Multi-tenant permission models • Authentication and authorisation • Secure API design • Data isolation strategies CRITICAL EXPERIENCE REQUIRED Applicants must have demonstrable experience delivering production SaaS platforms involving: • Supabase production deployments • PostgreSQL schema design and optimisation • Row Level Security implementation and troubleshooting • Multi-tenant SaaS platforms • Security-focused application development • Complex onboarding workflows • B2B software products • API integration and debugging • Production release management • CI/CD pipelines • Git-based collaborative development HIGHLY DESIRABLE • Governance, compliance, audit or assurance platforms • Procurement systems • Supplier management systems • Evidence management systems • Workflow engines • AI-assisted document processing • Enterprise SaaS applications • Performance optimisation of large applications CURRENT PRIORITIES 1. Self-Onboarding Completion • Supplier onboarding workflows • Corporate onboarding workflows • Registration and activation flows • Authentication pathways • User journey validation • Conversion bottleneck identification 2. Governance Domain Completion • Governance workflow validation • Dashboard completion • Data integrity review • Functional gap identification 3. Evidence and Readiness Workflows • Evidence submission processes • Assessment workflows • Reporting outputs • Architecture review 4. Security Validation • RLS policy review • Permission boundary validation • Tenant isolation review • Authentication review • Security hardening recommendations 5. Production Readiness • Bug remediation • Technical debt identification • Stability improvements • Scalability recommendations • Deployment readiness verification SUCCESS CRITERIA At the conclusion of the engagement we expect: • Self-onboarding workflows validated and operational • Governance domain validated and functioning correctly • Security review completed • RLS implementation reviewed • Key production risks identified and addressed • Documentation and recommendations delivered • Platform positioned for broader onboarding activity WHO THIS ROLE IS NOT FOR Please do not apply if you are: • A junior developer • Primarily a frontend developer • Primarily a WordPress developer • A project manager • A recruiter • An agency salesperson • Someone without production Supabase experience • Someone learning SaaS architecture for the first time APPLICATION REQUIREMENTS To be considered, please answer all of the following: 1. Describe a production SaaS platform you have personally worked on. 2. Describe your experience with Supabase Row Level Security. 3. Describe a multi-tenant architecture you have implemented. 4. Describe the most complex PostgreSQL schema you have worked with. 5. Describe a security review or audit you have completed. 6. Provide links to relevant GitHub repositories, case studies or portfolio examples. 7. Confirm that you are comfortable working within an existing codebase and delivering against fixed milestones. 8. Briefly explain how you would approach reviewing an unfamiliar SaaS platform during your first week. IMPORTANT To confirm that you have read this description in full, start your proposal with the words: "ICRI Platform Review" and include a short explanation of why Row Level Security is critical in a multi-tenant SaaS platform. Applications that do not follow these instructions will not be considered. Please assess your written and spoken English proficiency. Describe your experience working directly with Australian, UK, US or Canadian clients and how you provide project updates, technical documentation and stakeholder communication.