Software Engineer, IAM - Cloud Security

eBay•Austin, TX

1d•Onsite

About The Position

The Identity & Access Management / Cloud Security team protects eBay’s AI-first ecosystem by making sure the right people and systems have the right access at the right time. We build secure, scalable, and developer-friendly platforms that power experiences across eBay, with a strong focus on cloud-native architectures and automation. You will help define the future of intelligent, risk-aware access control for both humans and AI centric entities such as agents, bots, and MCP-enabled systems, design and deliver context-aware authorization services and APIs that operate at global scale, partnering closely with security, platform, and AI teams.

Requirements

7+ years of software engineering experience (or equivalent) working on access management, IAM, or security-focused systems, ideally in cloud-native, distributed environments.
Strong understanding of authorization models and access control principles, with hands-on experience in RBAC, ABAC, PBAC, and policy-based authorization platforms or engines.
Proficiency in backend development (such as Java, Node.js, or similar) and experience building scalable APIs and microservices for security or platform services.
Solid understanding of AI/ML concepts and practical experience using AI-powered development tools to build, optimize, or operate applications and services.
Familiarity with modern identity and security patterns, such as OAuth2, OIDC, SAML, Zero Trust, continuous access evaluation, or fine-grained policy engines (e.g., OPA, Cedar).
Ability to work from our Austin location and to partner optimally across subject areas and time zones with security, platform, and AI teams, with a growth mindset toward new technologies like AI agents, MCPs, and adaptive security.

Responsibilities

Design and deliver AI centric access control platforms that securely manage access for people, services, and autonomous agents across eBay’s cloud environments.
Implement dynamic authorization models (RBAC, ABAC, PBAC) that use real-time context and behavioral insights to improve both security and user experience.
Build and evolve real-time authorization engines and risk-adaptive access models that continuously evaluate signals to grant, restrict, or revoke access with low latency.
Create scalable, developer-friendly APIs and microservices for access enforcement, policy management, and entitlements, enabling product teams to integrate secure access controls quickly.
Collaborate with security, platform, and AI teams to establish standards, patterns, and guidelines for access control in AI-native and autonomous system scenarios.
Use AI-powered development tools and modern engineering practices to increase delivery speed, improve code quality, and drive continuous improvement in a distributed cloud environment.