We are looking for a Lead .NET Engineer to own the backend migration of a mature Windows desktop application for FDIC Call Report preparation to a cloud-native, containerized architecture on Kubernetes.
This is a greenfield-on-legacy engagement: decomposing a monolithic .NET Framework 4.8 / VB.NET codebase into five independently deployable ASP.NET Core services, while preserving every regulatory workflow FDIC-supervised banks depend on at filing time.
Responsibilities
-
Lead the backend migration effort from a legacy monolithic desktop application to a cloud-native, containerized architecture
-
Oversee the decomposition of the existing codebase into independently deployable backend services
-
Drive architectural decisions and shape the technical direction across the migration workstreams
-
Guide and mentor a small team of engineers, ensuring alignment on standards, patterns, and delivery goals
-
Collaborate with stakeholders to translate regulatory workflow requirements into scalable technical solutions
-
Design and implement backend services that support multi-tenant use cases with strict data isolation
-
Take an active part in code reviews and enforce high standards of code quality and maintainability
-
Identify and mitigate technical risks throughout the migration lifecycle
-
Coordinate deployment activities and ensure services operate reliably in containerised environments
-
Contribute to continuous improvement of engineering practices, tools, and delivery workflows
Requirements
-
At least 5 years of professional relevant experience in backend .NET engineering, with demonstrable experience leading a team of 2 to 4 engineers
-
Practical experience with legacy migration efforts moving applications to a new technology stack
-
Background designing and delivering multi-tenant SaaS backends with per-tenant data isolation
-
Hands-on delivery of microservices running on Kubernetes
-
Senior-level proficiency in C# and ASP.NET Core (Current)
-
Applied experience with Entity Framework Core, including global query filters, optimistic concurrency, and migration management
-
Working knowledge of PostgreSQL covering schema design, Row-Level Security, and multi-tenant patterns
-
Practical experience with OAuth 2.0 and OIDC server-side flows using Microsoft.Identity.Web, along with JWT issuance and validation
-
Hands-on experience with Docker and Kubernetes, including ownership of service manifests rather than only consuming them
-
Applied background with xUnit and Testcontainers for authoring integration tests against real databases
-
Strong VB.NET reading comprehension, with the ability to fluently trace and reason about legacy VB.NET code without needing to write it
-
Confident English communication at B2 level or higher, both written and spoken
Nice to have
-
Experience configuring Auth0 or equivalent SAML/OIDC brokers for identity and access management
-
Familiarity with AI Assistants for supporting development activities and productivity
-
Working knowledge of Azure Pipelines for CI/CD automation
-
Awareness of Google Cloud Platform for cloud infrastructure and service operations
-
Practical exposure to Helm for managing Kubernetes application deployments
-
Hands-on experience designing and building REST APIs
-
Familiarity with SAML for federated authentication scenarios
-
Awareness of XBRL for structured business reporting use cases
-
Experience with OpenTelemetry SDK instrumentation for observability and tracing
We offer
-
International projects with top brands
-
Work with global teams of highly skilled, diverse peers
-
Healthcare benefits
-
Employee financial programs
-
Paid time off and sick leave
-
Upskilling, reskilling and certification courses
-
Unlimited access to the LinkedIn Learning library and 22,000+ courses
-
Global career opportunities
-
Volunteer and community involvement opportunities
-
EPAM Employee Groups
-
Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn
EPAM is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity or expression, disability, protected veteran status, or any other characteristic protected by applicable law.