Senior Product Security Engineer

Added
1 hour ago
Type
Full time
Salary
Salary not provided

Related skills

aws python kubernetes gcp go

๐Ÿ“‹ Description

  • Design, build, and maintain secure CI/CD pipelines with security gates.
  • Automatically capture risk exposure of Chainguard's products.
  • Implement software supply chain security controls: signed artifacts, SBOMs, provenance attestation (SLSA, Sigstore/Cosign).
  • Lead security architecture reviews and threat models for Kubernetes workloads on GCP and AWS.
  • Harden container images, Kubernetes configs, and cloud IAM postures to minimize attack surface.
  • Define and drive baseline security standards: pod security standards, network policies, workload identity, secrets management.

๐ŸŽฏ Requirements

  • 5+ years in software or security engineering with hands-on security work.
  • Go or Python: write, review, and debug production-grade code.
  • Kubernetes in production: RBAC, network policies, and admission controls.
  • GCP/AWS: IAM, workload identity, secrets management; familiarity with Sigstore/SLSA.
  • CI/CD security: design/secure pipelines (GitHub Actions, Cloud Build, Tekton).
  • Container security: image scanning, distroless bases, runtime protections.

๐ŸŽ Benefits

  • Flexible remote-first culture with team meetups and coworking stipend.
  • Stock options on hire/promotion with a 10-year exercise window.
  • 100% covered health, vision, and dental insurance for you and dependents.
  • Infinite Flexible Time Off.
  • 18 weeks paid parental leave (birthing) and 12 weeks for non-birthing.
Share job

Meet JobCopilot: Your Personal AI Job Hunter

Automatically Apply to Engineering Jobs. Just set your preferences and Job Copilot will do the rest โ€” finding, filtering, and applying while you focus on what matters.

Related Engineering Jobs

See more Engineering jobs โ†’