Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Chainguard

Senior Product Security Engineer

Chainguard

Senior Product Security Engineer at Chainguard focusing on securing software supply chains and developing secure CI/CD pipelines. Leading security for cloud-native Kubernetes workloads on GCP and AWS.

Posted 6/12/2026full-timeRemote • 🇺🇸 United StatesSenior💰 $157,000 - $184,000 per yearWebsite

Tech Stack

Tools & technologies
AWSCloudGoGoogle Cloud PlatformKubernetesPython

About the role

Key responsibilities & impact
  • Design, build, and maintain secure CI/CD pipelines with security gates that catch issues before they reach production.
  • Systematically, consistently and automatically capture the risk exposure of Chainguards products.
  • Implement and enforce software supply chain security controls: signed artifacts, SBOMs, provenance attestation (SLSA, Sigstore / Cosign).
  • Proactively identify emerging customer security needs, and build solutions to meet these.
  • Lead security architecture reviews and threat models for Kubernetes-based workloads running on GCP and AWS.
  • Harden container images, Kubernetes cluster configurations, and cloud IAM postures — minimising attack surface across our product stack.
  • Define and drive adoption of baseline security standards: pod security standards, network policies, workload identity, secrets management.
  • Evaluate and operationalise CNAPP / CSPM tooling to maintain continuous visibility into cloud-native risk.

Requirements

What you’ll need
  • 5+ years in software engineering, security engineering, or a combined role with meaningful hands-on security responsibility throughout.
  • Strong proficiency in Go or Python, with the ability to write, review, and debug production-quality code.
  • Deep, hands-on experience with Kubernetes in production (cluster hardening, RBAC, network policies, admission controllers).
  • Practical expertise with GCP and/or AWS: IAM, workload identity, secrets management, security services (e.g., GCP Security Command Center, AWS Security Hub).
  • Proven track record designing and securing CI/CD pipelines (GitHub Actions, Cloud Build, Tekton, or similar).
  • Fluency with container security: image scanning, distroless/minimal base images, runtime security.
  • Experience with software supply chain security tooling and frameworks (Sigstore, SLSA, SBOM generation).
  • Solid understanding of OWASP, NIST, and cloud security frameworks and how to apply them pragmatically.

Benefits

Comp & perks
  • Flexible & Remote-First Culture: Work remotely with team meetup opportunities, bi-annual destination summits, and a monthly stipend for coworking spaces, phone and internet costs.
  • Our Approach to Equity: Receive stock options upon hire and promotion. Plus, you can participate in secondary offerings and have 10 years to exercise your options (yes, you read that correctly: 10 years!).
  • 100% Covered Health Insurance: We cover 100% of your health, vision and dental insurance premiums for you and your dependents. Nothing comes out of your paycheck.
  • ∞ Flexible Time Off: Take the time you need – to do our best work, we need to recharge and reset.
  • 18 Weeks Paid Parental Leave: We offer 18 weeks for birthing parents and 12 weeks for non-birthing parents, with the option to use it all at once or throughout your child's first year.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
GoPythonKubernetesCI/CD pipelinescontainer securitycloud securitySBOM generationsecurity controlsrisk exposurethreat modeling
Soft Skills
leadershipproactive problem solvingcommunicationcollaborationanalytical thinking