Policy Engineer
Tech Stack / Keywords
Firma i stanowisko
Intellias is an international technology company with over 20 years of market experience, operating across Europe, North and Latin America, and the Middle East. The company supports a multinational corporation in developing a comprehensive Digital Engineering Enterprise Platform that accelerates software delivery by providing engineering teams with cloud-native services, security frameworks, and development best practices. The role is part of the Core Architecture Team focused on secure authorization mechanisms for enterprise platforms, cloud services, and AI agent-based solutions.
Wymagania
- 3+ years of experience in Security Engineering or Backend Engineering.
- Hands-on experience with Cedar policy language, including policy authoring and testing.
- Experience working with AWS AgentCore Policy, including LOG_ONLY and ENFORCE modes.
- Strong Python programming skills, including developing policy validation and testing tools.
- Experience integrating identity providers such as Microsoft Entra ID, Okta, or Amazon Cognito.
- Experience with Microsoft Entra claims mapping and token-based authorization.
- Solid understanding of OAuth 2.0, JWT, and modern authorization architectures.
- Experience implementing ABAC and/or RBAC authorization models.
- Knowledge of parameter-level access control patterns.
- Hands-on experience with Open Policy Agent (OPA) or similar policy-as-code frameworks.
- Strong communication skills and ability to collaborate in cross-functional teams.
Nice to have:
- Experience with LangGraph tool invocation patterns.
- Experience integrating with AWS AgentCore Gateway.
- Experience working with AI agent platforms or cloud-native AI services.
- Understanding of cloud security governance and compliance best practices.
Obowiązki
- Design, implement, and maintain authorization policies using Cedar policy language.
- Develop, validate, and test policy definitions and enforcement mechanisms.
- Configure and manage AWS AgentCore Policy in LOG_ONLY and ENFORCE modes.
- Build Python-based tooling for policy validation, testing, governance, and automation.
- Integrate authorization frameworks with Microsoft Entra ID and other identity providers.
- Design claims mapping and token-based authorization flows using OAuth 2.0 and JWT.
- Implement fine-grained, parameter-level access control models.
- Develop and maintain ABAC and RBAC authorization patterns.
- Partner with platform and security teams to ensure secure governance across distributed systems.
- Create auditability and traceability mechanisms for authorization decisions.
- Promote policy-as-code practices and authorization best practices across engineering teams.
Benefity
- Work on cutting-edge AI and cloud-native security solutions.
- Join a strategic Core Architecture Team shaping enterprise-scale platforms.
- Collaborate with experienced architects, security engineers, and platform specialists.
- Influence modern authorization, identity, and policy-as-code practices.
- Be part of an international engineering environment focused on innovation, technical excellence, and continuous learning.
Inne informacje
Przesyłając ten formularz, wyrażasz zgodę na przetwarzanie Twoich danych osobowych zgodnie z naszą Polityką Prywatności Rekrutacji. Jeśli chcesz wycofać swoją zgodę lub masz pytania dotyczące Polityki Prywatności Rekrutacji, skontaktuj się z nami.
Intellias
25 aktywnych ofert