Senior Security Software Engineer
Remote in Poland
Security.Engineering& 6 others
Looking for something else?
Find a vacancy that works for you. Send us your CV to receive a personalized offer.
Find me a jobWe are looking for a Senior Security Software Engineer to implement the baseline Cedar policy library and policy authoring standard for our Enterprise Agent Development Platform. This production-grade cloud-native ecosystem enables engineering teams to define orchestrate deploy and observe AI agents at scale using LangGraph and Strands Agents on AWS AgentCore Runtime. Our goal is to reduce agent development from months to days while enforcing consistent security quality and governance standards.
Responsibilities
- Implement the baseline Cedar policy library and policy authoring standard for the platform
- Author and test Cedar policies governing agent access control
- Configure AWS AgentCore Policy LOG_ONLY and ENFORCE modes for staged policy rollout
- Build Python-based tooling to validate policy definitions
- Map MS Entra claims to platform policy attributes
- Design parameter-level access control patterns for agent tooling
- Establish governance standards for policy authoring across engineering teams
- Collaborate with platform and security teams to enforce consistent access control practices
Requirements
- 3+ years of experience in security engineering or backend engineering
- Expertise in Cedar policy language including authoring and testing
- Hands-on experience with Open Policy Agent (OPA)
- Knowledge of AWS AgentCore Policy LOG_ONLY and ENFORCE modes
- Proficiency in Python for policy validation tooling
- Familiarity with MS Entra claims mapping and parameter-level access control patterns
- Skills in identity provider integration with Entra Okta and Cognito
- Understanding of policy definition in any ABAC or RBAC system
Nice to have
- Familiarity with LangGraph tool invocation patterns
- Knowledge of AWS AgentCore Gateway integration
