Software Engineer, Security

at Cursor · Coding AI · San Francisco, CA · Engineering

Software Engineer focused on security for an AI-powered coding tool. Responsibilities include building secure systems, implementing agent security features, and ensuring safe handling of agent interactions with user systems.

What you'd actually do

  1. Build AI augmented code review to get involved in important systems at the right time
  2. Build a least-privilege and JIT system for cloud access that enables engineers _and_ enforces least privileges.
  3. Implement a safe environment for agents to engage with code
  4. Implement a framework for securely handling agent manipulation of user systems (e.g., MCP tool calls and command execution).
  5. Implement a paved road for preventing inappropriate data from being logged

Skills

Required

  • software engineering
  • security
  • building secure systems
  • agent security
  • tool use
  • command execution

Nice to have

  • enterprise security
  • cloud infrastructure security
  • developer experience
  • fast-moving environments
  • pragmatism
  • rigor

What the JD emphasized

  • security as your superpower
  • anticipate vulnerabilities
  • secure defaults
  • securely handling agent manipulation
  • tool calls
  • command execution

Other signals

  • AI augmented code review
  • secure environment for agents
  • securely handling agent manipulation
  • tool calls
  • command execution
Read full job description

Our mission is to automate coding. The first step in our journey is to build the best tool for professional programmers, using a combination of inventive research, design, and engineering. Our organization is very flat, and our team is small and talent dense. We particularly like people who are truth-seeking, passionate, and creative. We enjoy spirited debate, crazy ideas, and shipping code.

About the Role

Security Software Engineers help us ship secure products end-to-end—covering enterprise security, cloud/infrastructure, and protections embedded directly in our products. You’ll build the tools and features that safeguard our platform and editor and protect our customers.

You may be a fit if

  • You are a strong software engineer first, with security as your superpower.
  • You think like both a builder and an attacker: you anticipate vulnerabilities before they become issues.
  • You care about developer experience, building solutions that are secure and frictionless.
  • You’re comfortable moving quickly, owning problems end to end, and iterating with limited guidance.
  • You have experience building or scaling secure systems in fast-moving environments.
  • You have strong opinions on secure defaults, but can balance pragmatism with rigor.
  • You enjoy working on small, high-talent teams where impact is magnified.
  • You’re motivated by protecting developers and users, and you see security as an enabler.

Sample projects include

  • Build AI augmented code review to get involved in important systems at the right time
  • Build a least-privilege and JIT system for cloud access that enables engineers and enforces least privileges.
  • Implement a safe environment for agents to engage with code
  • Implement a framework for securely handling agent manipulation of user systems (e.g., MCP tool calls and command execution).
  • Implement a paved road for preventing inappropriate data from being logged

Applying

If there appears to be a fit, we'll reach to schedule 2-3 short technicals. After, we'll schedule an onsite in our office, where you'll work on a small project, discuss ideas, and meet the team.

#LI-DNI