← Zurück zur Liste

Stelle
Senior Product Security Engineer
Security Engineer
• Vor Ort
• Vollzeit
• 📍 United Kingdom - Remote
An individual-contributor, Staff-level role focused on being embedded in secure CI/CD pipelines and cloud-native product hardening, rather than being a gate at the end of the process.
Responsibilities
- ▹Design, build, and maintain secure CI/CD pipelines with security gates that catch issues before they reach production
- ▹Systematically, consistently, and automatically capture the risk exposure of Chainguard's products
- ▹Implement and enforce software supply chain security controls: signed artifacts, SBOMs, provenance attestation (SLSA, Sigstore/Cosign)
- ▹Proactively identify emerging customer security needs and build solutions to meet them
- ▹Lead security architecture reviews and threat models for Kubernetes-based workloads running on GCP and AWS
- ▹Harden container images, Kubernetes cluster configurations, and cloud IAM postures, minimizing attack surface across the product stack
- ▹Define and drive adoption of baseline security standards: pod security standards, network policies, workload identity, secrets management
- ▹Evaluate and operationalize CNAPP/CSPM tooling for continuous visibility into cloud-native risk
Requirements
- ▹7+ years in software engineering, security engineering, or a combined role with meaningful hands-on security responsibility
- ▹Strong proficiency in Go or Python, able to write, review, and debug production-quality code
- ▹Deep, hands-on Kubernetes production experience (cluster hardening, RBAC, network policies, admission controllers)
- ▹Practical expertise with GCP and/or AWS: IAM, workload identity, secrets management, security services (e.g. GCP Security Command Center, AWS Security Hub)
- ▹Proven track record designing and securing CI/CD pipelines (GitHub Actions, Cloud Build, Tekton, or similar)
- ▹Fluency with container security: image scanning, distroless/minimal base images, runtime security
- ▹Experience with software supply chain security tooling and frameworks (Sigstore, SLSA, SBOM generation)
- ▹Solid understanding of OWASP, NIST, and cloud security frameworks and how to apply them pragmatically
Nice to have
- ▹Familiarity with Chainguard Images or other minimal/hardened container base image ecosystems
- ▹Experience with policy-as-code tools (OPA, Kyverno, Conftest)
- ▹Contributions to open source security projects
- ▹Background in security research or offensive security (bug bounty, CTF, penetration testing)
About the company
Chainguard is the trusted source for open source, delivering hardened, secure, production-ready builds relied on by software engineers and AI agents. Customers include Fortune 500 enterprises such as Anduril, Canva, Fortinet, Hewlett Packard Enterprise, OpenAI, Snap Inc., and Snowflake. The company is venture-backed by investors including Amplify, IVP, Kleiner Perkins, Lightspeed Venture Partners, Mantis VC, Redpoint Ventures, Sequoia Capital, and Spark Capital.
Ähnliche Stellen
Stelle
Senior Security Engineer
Causaly
💰 Gehalt: keine Angabe
🌍 Remote
📍 London
Stelle
Senior Manager (National Security)
Faculty
💰 Gehalt: keine Angabe
🏢 Vor Ort
📍 UK - London
Stelle
Delivery Manager (National Security)
Faculty
💰 Gehalt: keine Angabe
🌍 Remote
📍 UK - London
Stelle
Staff Security Engineer
Wayve
💰 Gehalt: keine Angabe
🏢 Vor Ort
📍 London
Stelle
Automotive Product Security Lead
Wayve
💰 Gehalt: keine Angabe
🏢 Vor Ort
📍 London

Stelle
Principal Product Security Researcher
Chainguard
💰 Gehalt: keine Angabe
🏢 Vor Ort
📍 United Kingdom - Remote