Role: Agent Identity Engineer
Location: Remote (EST Hours)
Duration: 12-Month Contract to Hire
Work Type: W2 role
Agent Identity Engineer
Hands-on IAM engineering experience (not advisory)
Strong AWS IAM (must be deep here) + multi-cloud exposure
Experience with RBAC, ABAC, SCPs, permission boundaries
Experience securing non-human identities (service accounts, workloads, etc.)
Ability to implement and enforce access controls programmatically
Understanding of privilege escalation and blast radius reduction
Project Summary
- This team sits within Client s Global Enterprise Security org and is focused on building out security architecture and controls for emerging AI and agent-based ecosystems.
- The environment is multi-cloud (AWS, Azure, Google Cloud Platform) and still in early stages of defining standards around AI gateways, agentic workflows, and non-human identities.
- The goal is to establish scalable security guardrails, identity models, and access controls that can support enterprise adoption of AI technologies.
There is a strong emphasis on:
- Securing non-human / agent identities
- Defining IAM and access boundaries for AI systems
- Embedding security into AI gateway and platform decisions
- Building scalable, enterprise-level architecture and standards
Overview
- This role focuses on securing non-human and agentic identities within AI ecosystems.
- The individual will partner closely with a senior technical lead focused on agentic security and work alongside the broader IAM organization.
- The emphasis is heavily on engineering and implementation of security controls, particularly around access boundaries, permissions, cloud IAM controls, and reducing blast radius associated with AI agents and non-human identities.
Key Responsibilities
- Design and implement controls around agentic and non-human identities
- Develop detective and preventative controls for risky or unmanaged identities
- Help define security boundaries for AI agents and automated workflows
- Partner with IAM teams to align enterprise identity controls with AI security initiatives
- Support implementation of cloud IAM policies, role tagging, ABAC, RBAC, and SCP strategies
- Reduce excessive privilege exposure in AI-enabled environments
- Help operationalize security enforcement mechanisms tied to AI governance policies
- Work closely with internal security technical leads on architecture and implementation
Skills & Experience
- Strong IAM engineering background
- Experience with non-human identities, service accounts, machine identities, or workload identities
- Deep understanding of AWS IAM and cloud-native identity controls
- Familiarity with ABAC, RBAC, SCPs, permissions boundaries, and identity governance
- Exposure to AI security or agentic identity concepts strongly preferred
- Hands-on engineering mindset rather than pure GRC or policy experience
- Understanding of privilege escalation risks and blast radius reduction strategies
- Ability to implement security controls programmatically and operationally
| | Himanshu Sharma Empower Professionals |
100 Franklin Square Drive Suite 104, Somerset, NJ 08873 x 387 | Certified NJ and NY Minority Business Enterprise (NMSDC) |
Never miss an opportunity! Create an alert based on the job you applied for.
