Location: Bengaluru
Mission: Live at the intersection of app runtime & security. Protect applications in a fundamental way so that developers can build great application services and not be constantly looking over their shoulder. BlueRock is changing the landscape of App runtime security.
What You'll Build:
BlueRock Agentic Sandbox: Be part of the team developing our flagship multi-language runtime security platform
Deep-Trace Observability: Build the infra that hooks into frameworks like CrewAI, Google ADK, and OpenAI Agents to monitor and intercept malicious intent in real-time
End-to-End Hardening: Secure the entire lifecycle from agent orchestration to execution
Required Qualifications:
Systems Generalist: 5+ years of experience. You aren't afraid to go below the API to the kernel or the runtime
Deep knowledge of Python or JS/Node.js, including monkey patching, import hooking, and dynamic instrumentation
Agent Fluent: You've spent time with LangChain, CrewAI, or similar frameworks.
Observability: Experience with OpenTelemetry, Datadog or similar for high-cardinality distributed tracing
You've integrated AI-assisted coding (Claude Code, Cursor, CoPilot) into your daily workflow to move faster
Preferred Qualifications:
Experience with protocols like MCP (Model Context Protocol) or A2A
A "Hacker Mindset" (OWASP expertise, understanding deserialization, SSRF, and privilege escalation)
Experience with Container Runtimes (OCI, containers) or a love for Rust
Experience with K8s or similar orchestration frameworks
About BlueRock:
BlueRock is a well-funded, early stage cybersecurity company founded by experienced security minded entrepreneurs. Our mission is to change the game in cybersecurity. Attackers are exploiting in hours. The dependency tree is exploding. Developers are drowning in vulnerability debt. BlueRock changes the game, enabling organizations to shift from chasing CVEs and exploits to proactively protecting the foundations of applications and computing, so that developers can build great applications without looking over their shoulders.
Skills Required
- 5+ years experience as a Systems Generalist
- Mastery of Python internals including wrapt and bytecode manipulation
- Expertise in JavaScript and Node.js, ESM loader hooks, and native addon integrations
- Experience with instrumentation frameworks like OpenTelemetry and Datadog
- Experience with AI code generation tools like Claude Code and CoPilot
- Experience building and deploying to cloud services (AWS, GCP, Azure)
What We Do
BlueRock delivers the first Compute Firewall, revolutionizing runtime security in an era of AI-speed cyberattacks and escalating third-party software risks. Traditional security tools and agents can't keep pace, leaving enforcement gaps exposed. Attackers now exploit vulnerabilities within minutes of disclosure, outpacing reactive detection methods. BlueRock solves this by embedding real-time, preemptive enforcement directly into the compute layer, halting exploits precisely where they execute—before detection tools even trigger alerts. Unlike noisy, complex, and fragile agent-based solutions, BlueRock's Compute Firewall integrates seamlessly into the cloud image distributions you already use, requiring no code changes or application slowdowns. Developers can concentrate on innovation instead of emergency patches, while security teams gain real-time enforcement, drastically reducing runtime risk. Break free from the Dev versus Security trade-off. BlueRock enables both teams to thrive—accelerating business agility while delivering proactive, robust security. Founded by cybersecurity pioneers Ashar Aziz (Founder/CEO of FireEye) and Bob Tinker (Founder/CEO of MobileIron), BlueRock bridges the longstanding divide between development velocity and security requirements.
