Product Engineer (Security)

About the role

We are looking for a security-focused Product Engineer to own the policy evaluation and authorization layer at the heart of Dome. You will build the Cedar-based policy engine, the enforcement runtime, and the audit trail that makes every agent action deterministic and auditable.

Responsibilities

• Build and maintain the Cedar policy evaluation engine
• Own the per-agent, per-tool, per-action authorization layer
• Design and implement the full audit trail with decision context
• Build response filtering and field-level redaction capabilities
• Work with enterprise customers on policy design and compliance requirements

Requirements

• Strong background in security engineering and access control systems
• Experience with policy languages (Cedar, OPA, Rego, or similar)
• Proficiency in TypeScript and/or Go
• Deep understanding of enterprise compliance requirements (SOC 2, ISO 27001)
• Experience building audit and observability infrastructure

Nice to have

• Experience with SIEM, APM, or SOAR integrations
• Familiarity with enterprise IAM systems (Okta, Azure AD)
• Background in cloud security (AWS IAM, GCP IAM)