Backend Engineer, Platform

Why Equall

Equall is building the legal infrastructure for the private markets — a new system for how corporate legal reality is verified, tracked, and continuously managed.

Our AI-native platform extracts, structures, and reconciles corporate legal information, producing auditable outputs such as a cap table tie-out reports, governance dashboards, and personnel summaries grounded in source documents. Equall executes workflows end to end across both due diligence and day-to-day advisory work, verifying a company's legal state and surfacing actionable issues in real time.

In practice, this means:

• Investor-side due diligence delivered in hours, not weeks

• Company-side client snapshots, continuously updated

• Legal team review reduced by an order of magnitude

This opportunity comes at a pivotal moment in Equall's journey. We are working with leading law firms in ECVC and are now entering a period of rapid growth as we scale both our customer base and our product — extending coverage across the venture and emerging companies ecosystem and expanding into private equity and M&A.

Equall brings together leaders across legal, engineering, and AI to deliver transformative value. We listen closely to our customers, build with purpose, and work with both enthusiasm and a steadfast commitment to excellence — driven to reshape how corporate legal work is executed and how legal ground truth is determined.

If you are interested in playing an impactful role in this mission, we would be excited to hear from you.

The Role

We are seeking an exceptional backend engineer to own the platform that everything at Equall runs on. This is a broad role — you will own the infrastructure, CI/CD, security, observability, and developer experience that lets the rest of the engineering team ship confidently and quickly. You will decide how services get deployed, how they stay secure, how we see what they're doing in production, and how our platform scales as we grow. If you take pride in building infrastructure as a product — the kind that engineers love to work on top of — this role is for you.

Our Stack

• Python services running on Kubernetes (AWS and GCP)

• Istio for service networking

• ArgoCD for continuous delivery, Depot for CI

• Postgres, Redis, and Neo4j on the data layer

What You'll Do

• Own CI/CD end-to-end — Depot, ArgoCD, and the deployment pipelines the rest of engineering depends on

• Operate our cloud infrastructure across AWS and GCP, and the Kubernetes and Istio platforms that run on top of it

• Shape our multi-tenancy architecture — isolation boundaries, per-tenant resource management, and runtime isolation of untrusted workloads

• Lead our security engineering posture — auth, secrets, runtime security, compliance tooling, and the controls that protect customer data

• Build the observability stack on Datadog — metrics, logs, traces, alerting — so the team can debug fast and sleep well

• Invest in developer experience — local dev loops, feature flag infrastructure, and the internal tooling that compounds engineering velocity

What You'll Have

• Strong experience running production services on Kubernetes

• Deep comfort with at least one major cloud (AWS or GCP) — and an appetite for operating across both

• A security engineering mindset — you instinctively think about blast radius, isolation, and attack surface

• Experience operating multi-tenant SaaS in production

• Strong opinions on CI/CD and developer experience, and the experience to back them up

• Proficiency in at least one backend language (Python, Go, Rust, or Zig)

• Excellent judgment on system design tradeoffs and a bias toward shipping

Bonus Points

• Experience with Istio, Linkerd, or other service meshes

• Experience with runtime isolation (gVisor, Firecracker, Kata, or similar)

• Experience with SOC2 / compliance automation (Vanta or peers)

• Experience with runtime security tooling (Wiz, Falco, or peers)

• Experience with GitOps / ArgoCD at scale

• Experience building auth systems (OIDC, SSO, RBAC, fine-grained authorization)