Senior Supply Chain Security Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior Supply Chain Security Engineer developing Docker's security-hardened images and managing Helm charts. Collaborating on upstream OSS projects and ensuring compatibility with Kubernetes and security guidelines.
Responsibilities:
- Authoring and maintaining image definition files that track upstream OSS project releases, define build steps, and keep our catalogue current across dozens of images
- Adapting upstream Helm charts (cert-manager, grafana, mongodb, kyverno, and many more) to work with DHI images - handling security constraints, non-root contexts, and Kubernetes compatibility concerns
- Tracking upstream version releases and semver patterns across monorepos and standard repos, handling major version breaks and dependency chains
- Writing Go-based integration tests that validate images and charts behave correctly in real Kubernetes environments
- Triaging CVEs and contributing to security hardening decisions across images
- Reviewing peers' definitions and chart PRs against established conventions and catching subtle issues before they reach customers
Requirements:
- 6+ years of backend engineering experience with production-grade systems
- Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent practical experience
- Strong familiarity with the container and Kubernetes ecosystem - you know what cert-manager, kyverno, grafana, and istio are, you've deployed them, and you can read upstream Helm chart source without getting lost
- Comfort with YAML as a primary working medium - you think carefully about structure, conventions, and patterns
- Understanding of container security basics - non-root users, UID/GID, image layers, multi-arch builds, supply chain concepts
- Some Go ability - enough to read and write test code, not to build distributed systems
- A maintainer mindset - you take pride in consistency, catch drift from patterns, and think about how your change affects others downstream
- Familiarity with GitHub-heavy open source workflows - PRs, upstream tracking, monorepo conventions
Benefits:
- Freedom & flexibility; fit your work around your life
- Designated quarterly Whaleness Days plus end of year Whaleness break
- Home office setup; we want you comfortable while you work
- 16 weeks of paid Parental leave (after 6 months of employment)
- Technology stipend equivalent to $100 USD net/month
- PTO plan that encourages you to take time to do the things you enjoy
- Training stipend for conferences, courses and classes
- Equity; we are a growing start-up and want all employees to have a share in the success of the company
- Docker Swag
- Medical benefits, retirement and holidays vary by country
- Remote-first culture, with offices in Seattle and Paris
Similar Jobs
Compliance/Security Officer
Compliance Officer overseeing comprehensive compliance program while ensuring adherence to federal and state laws. Leading policies, audits, and risk assessments in a healthcare context.
Director of Security
Director of Security responsible for information security and compliance for Crete Professionals Alliance. Leading a team, managing risk, and integrating security processes across the organization.
Security Engineer
Information Security Engineer managing endpoint defense, security awareness, and operations. Collaborating to enhance the security program within FMG's remote IT environment.
Security Tech Lead
Security Tech Lead managing information security initiatives to protect data and systems. Leading and supporting the adoption of secure practices across teams and gaining client trust.
Enterprise Security Engineer
Enterprise Security Engineer at Benchling focusing on building a security program and implementing zero trust strategies for sensitive data protection.
Head of Security Research
Head of Security Research leading a team of security experts at Dropzone AI. Overseeing threat intelligence, detection engineering, and building an elite security team.
Information Systems Security Manager
IT Security Manager leading security professionals to protect sensitive data and ensure compliance. Overseeing cybersecurity policies, incident response, and risk management frameworks.
IT Business Partner, Enterprise Solutions – Real Estate and Corporate Security Platforms
Business Partnering role focused on leading business analysis for Real Estate and Corporate Security technology at Fresenius Medical Care. Collaborating with business owners to define and manage digital strategy and roadmap.
Cybersecurity Engineer II
Mid-level Cybersecurity Engineer responsible for identity security and cloud platforms. Supporting compliance with CMMC and NIST across various government environments.
FP&A Director, Security
FP&A Director overseeing P&L accountability and financial analysis for Cobalt’s security business. Driving key operating decisions and contributing to M&A deals.
Senior Corporate Security Engineer
Corporate Security Engineer handling IT and cloud security for Juniper Square, focusing on threat detection, incident response, and security tooling management.
Security Engineer – Threat Detection
Security Engineer at Snowflake enhancing threat detection capabilities utilizing AI and automation, collaborating across Security and Engineering teams.
Senior AI Security Engineer, Cyber Architecture, OT and Engineering
Sr. Agentic AI Engineer designing, building, and operationalizing agentic AI systems at EY. Working on multi-agent frameworks and intelligent automation to enhance cybersecurity posture.
Senior Security Architect
Remote Sr. Security Architect at Alkami, enabling secure business practices with proactive security initiatives and collaboration across teams in a growing SaaS environment.
Information Security Officer
Information Security Officer at SmartestEnergy Limited shaping ISO 27001:2022 across a global business landscape. Driving governance, risk management, compliance, and security best practices in a collaborative environment.
Network Security Engineer
Network Security Engineer designing, implementing, and maintaining secure network infrastructures at SOFTSWISS. Strengthening corporate security and improving standards in iGaming services.
Senior Solutions Director – Security
Sr Solutions Director directing Security solutions strategy at ePlus. Leading go-to-market plans for innovative Security technology solutions.
Distinguished Engineer, Cybersecurity
Senior leader overseeing cybersecurity and data solutions at Nagarro. Driving innovation, strategy, and client engagement across various domains and industries.
Senior Security Administrator
Senior Security Administrator supporting SaaS/cloud customers with security configurations and troubleshooting. Collaborating with an expert team to ensure system security.
Freelance WordPress, Security, HIPAA Compliance Consultant
Freelance consultant auditing WordPress website for HIPAA compliance risks. Requires 4-5 years of experience in WordPress security and HIPAA compliance.