Staff Product Security Engineer
Chainguard5 days ago
Responsibilities
- Design, build, and maintain secure CI/CD pipelines with security gates.
- Capture the risk exposure of Chainguard's products systematically.
- Implement software supply chain security controls like signed artifacts and SBOMs.
- Identify emerging customer security needs and develop solutions.
- Lead security architecture reviews and threat models for Kubernetes workloads.
- Harden container images and cloud IAM postures to minimize attack surfaces.
- Define and drive adoption of baseline security standards.
- Evaluate and operationalize CNAPP/CSPM tooling for continuous visibility.
Requirements
- 7+ years in software engineering, security engineering, or a combined role.
- Strong proficiency in Go or Python for production-quality code.
- Deep experience with Kubernetes in production environments.
- Practical expertise with GCP and/or AWS security services.
- Proven track record in designing and securing CI/CD pipelines.
- Fluency with container security practices.
- Experience with software supply chain security tooling and frameworks.
- Solid understanding of OWASP, NIST, and cloud security frameworks.
Benefits
- Flexible and remote-first culture with team meetups and stipends for coworking.
- Stock options upon hire and promotion with a 10-year exercise period.
- 100% coverage of health, vision, and dental insurance premiums.
- Infinite flexible time off to recharge and reset.
- 18 weeks paid parental leave for birthing and non-birthing parents.