Engineering Manager, Agent & Product Security
Cursor (Anysphere)
Our mission is to automate coding. The first step in our journey is to build the best tool for professional programmers, using a combination of inventive research, design, and engineering. Our organization is very flat, and our team is small and talent dense. We particularly like people who are truth-seeking, passionate, and creative. We enjoy spirited debate, crazy ideas, and shipping code.
About the role
Cursor’s agents work inside the codebases of some of the most security-conscious engineering organizations in the world — holding credentials, reading untrusted content, running tools, and shipping changes. Today they act on authority delegated per task. Where we’re headed, they’ll work more like coworkers: autonomous over long horizons, holding standing responsibilities, initiating work, and collaborating with people and other agents. The security models that future needs — identity and accountability for autonomous workers, standing authority rather than per-task permission, agent-to-agent trust, oversight that scales with always-on autonomy — mostly don’t exist yet.
As Engineering Manager for Agent & Product Security, you’ll lead the team that makes agentic software development trustworthy. This team owns the security boundaries between customers, data, tools, repositories, workspaces, and agent authority across Cursor’s product and agents and designs the primitives behind them: agent identity, delegated authority, policy enforcement, secure tool execution, and prompt-injection containment. Little of this has settled precedent, so the team’s decisions carry unusual weight for Cursor and for how the industry approaches these problems.
Security here is tightly coupled to product strategy: customers adopt agent autonomy as fast as we can make it trustworthy, so the boundaries your team makes safe directly determine what the product can ship. You’ll help set that direction.
What you’ll do
- Chart the path from supervised agents to trusted autonomous ones: define the security primitives that enable agent autonomy, and lead the team that builds them.
- Engineer the isolation that makes Cursor safe to run inside customers’ most valuable codebases: tenancy, workspace, secret, and data protections designed for real adversaries.
- Build the authority infrastructure autonomous agents need: identity, scoped permissions, policy enforcement, and secure tool execution, so an agent can hold real responsibility with verifiable limits and full accountability.
Don't want to miss the next one?
Subscribe to daily email alerts for roles matching your interests.