Sign up to access all features of our service
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Security / Policy Engineer (with Cedar)

Intellias

We are looking for a Security / Policy Engineer to design and implement authorization models for AI agents and cloud-native platforms. The role focuses on AWS AgentCore Policy (Cedar), policy-as-code, OAuth/JWT-based authorization, and zero-trust security architecture. The ideal candidate has hands-on experience with cloud security, identity engineering, ABAC design, and enterprise-grade access control systems.

What project we have for you

Our customer is a multinational corporation with more than a century of history and offices in over 180 countries. Their most ambitious goal at the time is to introduce a range of Reduced-Risk Products (RRPs). The target audience is more than 1 billion consumers around the globe. IT platform hosts 700+ applications.
Intellia’s mission is to help the client with the engineering of a comprehensive software ecosystem for a game-changing IoT product on the margin of innovative consumer experience and cutting-edge technology. Our teams are involved in the engineering of core platform components for best-in-class eCommerce, Digital Marketing and IoT solutions. As an Engineer, you will become a part of Core Architecture Team and be responsible for the architecture, implementation of best practices in our Digital Engineering Enterprise Platform.
The Platform is a set of services and internet applications that accelerate the development and delivery of software applications by taking care of common SDLC challenges. The Platform provides access and consumption for engineering teams to a set of services, technologies, practices for their development and for operating their application, ensuring a set of compliance and best practices.

What you will do

  • Design and implement authorization policies using Cedar and AWS AgentCore Policy.
  • Develop and maintain policy-as-code frameworks for cloud-native and AI-agent platforms.
  • Build and govern Attribute-Based Access Control (ABAC) models following least-privilege and default-deny principles.
  • Integrate authorization systems with OAuth 2.0, JWT, and Microsoft Entra ID.
  • Define and maintain principals, resources, actions, and conditional access policies.
  • Design token validation, claims mapping, and authorization decision workflows.
  • Implement audit logging and traceability for policy evaluation and access decisions.
  • Partner with security, architecture, and platform teams to support enterprise security reviews and governance processes.
  • Contribute to zero-trust security architecture and authorization strategy across distributed systems.
  • Evaluate and adopt emerging AWS authorization technologies, including Cedar and AWS Verified Permissions.

What you need for this

• AWS AgentCore Policy (Cedar)
• Cedar policy language (principals, actions, resources, conditions)
• OAuth 2.0 / JWT / MS Entra integration
• Policy-as-code patterns
• Default-deny authorization models
• Audit logging for policy decisions

Experience:

• 5+ years cloud security or identity engineering
• Attribute-based access control (ABAC) design
• OAuth 2.0 / JWT token inspection and claims mapping
• Enterprise security review (InfoSec, ARB processes)

Will be a plus:

• AWS Cedar (open source) prior exposure
• AWS Verified Permissions or AgentCore Policy early experience
• Zero-trust architecture design

What it’s like to work at Intellias

At Intellias, where technology takes center stage, people always come before processes. By creating a comfortable atmosphere in our team, we empower individuals to unlock their true potential and achieve extraordinary results. That’s why we offer a range of benefits that support your well-being and charge your professional growth.
We are committed to fostering equity, diversity, and inclusion as an equal opportunity employer. All applicants will be considered for employment without discrimination based on race, color, religion, age, gender, nationality, disability, sexual orientation, gender identity or expression, veteran status, or any other characteristic protected by applicable law.
We welcome and celebrate the uniqueness of every individual. Join Intellias for a career where your perspectives and contributions are vital to our shared success.

Vacancy posted 23 hours ago
Similar jobs that could be interesting for youBased on the Security / Policy Engineer (with Cedar) in Bulgaria vacancy
  •  ...We are looking for a Security Test Engineer to validate the security, reliability, and correctness of authorization and policy enforcement systems used in AI agent platforms. The role...  ...in security-focused QA, test automation with Python, and modern application security... 
    Policy

    Intellias

    Bulgaria
    23 hours ago
  •  ...We are looking for a Security & Governance Engineer to establish and enforce security controls, governance...  ...is a multinational corporation with more than a century of history and offices...  ...Define and maintain data classification policies for tool payloads, metadata, and sensitive... 
    Policy

    Intellias

    Bulgaria
    23 hours ago
  •  ...We are looking for a Policy Engineer to design, implement, and validate fine-grained authorization...  ...-native services. The role focuses on Cedar policy development, identity provider...  .... The ideal candidate combines hands-on security engineering experience with strong Python... 
    Policy

    Intellias

    Bulgaria
    23 hours ago
  •  ...technology, all solutions are designed with SMEs in mind. With quick onboarding, low...  ...Luxembourg ABOUT THE ROLE: The Tide Security Engineering team is made up of three core areas:...  ...AI in our recruitment process in our AI Policy . Your personal data will be processed... 
    Policy
    Permanent employment
    Immediate start
    Remote job
    Flexible hours
    Rotating shift

    Careers at Tide

    Bulgaria
    10 days ago
  •  ...We are looking for a Platform Engineer to build secure discovery and credential management capabilities...  ...candidate has hands-on experience with Python backend development, secrets management...  ..., service identities, and tool access policies. Design semantic indexing pipelines... 
    Policy

    Intellias

    Bulgaria
    23 hours ago
  •  ...are looking for a Senior Platform Engineer (Agent Gateway) to design and operate secure, scalable agent communication...  ...Python backend engineering skills with deep expertise in distributed systems...  ...Establish routing, governance, and policy enforcement mechanisms across agent... 
    Policy

    Intellias

    Bulgaria
    23 hours ago
  •  ...are looking for an experienced engineer to design and manage...  ...is a multinational corporation with more than a century of history...  ...Organizations, Service control policies, access models. – IAAC: terraform...  ...System, Application, Network and security architectures –... 
    Policy
    Hybrid work

    Intellias

    Bulgaria
    12 days ago
  •  ...are looking for an experienced engineer to build and enhance...  ...is a multinational corporation with more than a century of history...  ...Organizations, Service control policies, access models. – IAAC: terraform...  ...System, Application, Network and security architectures –... 
    Policy
    Hybrid work

    Intellias

    Bulgaria
    12 days ago
  •  ...are looking for a Tech Lead Engineer to design and lead the implementation...  ...management, and integration with AWS AgentCore ecosystem...  ...and a deep understanding of API security, governance, and cloud-native...  ...registry standards and governance policies. Design operational... 
    Policy
    Contract work

    Intellias

    Bulgaria
    23 hours ago
  •  ...This role plays a key part in aligning the system with evolving business needs, particularly across finance...  ..., and workflows  ~ Oversee system upgrades, security, and compliance initiatives according to company policies and Microsoft recommendations  ~ Provide strategic... 
    Policy

    Intellias

    Bulgaria
    25 days ago
  •  ...small business banking market with over 1.8 million members globally...  ...hiring a Senior Staff Software Engineer to lead the architecture of our...  ...as context APIs, tool layers, policy controls, and auditability Partner with product, data, security, and engineering teams to turn... 
    Policy
    Long term contract
    Immediate start

    Tide

    Bulgaria
    more than 2 months ago
  • € 33.200 - € 37.350 p.a.

     ...advanced technology, all solutions are designed with SMEs in mind. With quick onboarding, low...  ...cross-functionally with Fraud, Product, Engineering, Risk, and Data teams to continuously...  ...AI in our recruitment process in our AI Policy . Your personal data will be... 
    Policy
    Permanent employment
    Work at office
    Immediate start
    Work from home
    Flexible hours

    Careers at Tide

    Bulgaria
    17 days ago
  • € 35.200 - € 44.000 p.a.

     ...France. Using advanced technology, all solutions are designed with SMEs in mind. With quick onboarding, low fees and innovative features...  ...relationships comply with regulatory requirements and internal policies. Payments/transfers execution and collateral management :... 
    Policy
    Temporary work
    Work at office
    Immediate start
    Remote job
    Home office
    Flexible hours

    Careers at Tide

    Bulgaria
    22 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Security / Policy Engineer (with Cedar). Be the first to apply!