FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Senior Supply Chain Security Engineer
Docker, IncSenior Supply Chain Security Engineer developing Docker's security-hardened images and managing Helm charts. Collaborating on upstream OSS projects and ensuring compatibility with Kubernetes and security guidelines.
Tech Stack
Tools & technologiesDistributed SystemsGoGrafanaKubernetesMongoDBOpen Source
About the role
Key responsibilities & impact- Authoring and maintaining image definition files that track upstream OSS project releases, define build steps, and keep our catalogue current across dozens of images
- Adapting upstream Helm charts (cert-manager, grafana, mongodb, kyverno, and many more) to work with DHI images - handling security constraints, non-root contexts, and Kubernetes compatibility concerns
- Tracking upstream version releases and semver patterns across monorepos and standard repos, handling major version breaks and dependency chains
- Writing Go-based integration tests that validate images and charts behave correctly in real Kubernetes environments
- Triaging CVEs and contributing to security hardening decisions across images
- Reviewing peers' definitions and chart PRs against established conventions and catching subtle issues before they reach customers
Requirements
What you’ll need- 6+ years of backend engineering experience with production-grade systems
- Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent practical experience
- Strong familiarity with the container and Kubernetes ecosystem - you know what cert-manager, kyverno, grafana, and istio are, you've deployed them, and you can read upstream Helm chart source without getting lost
- Comfort with YAML as a primary working medium - you think carefully about structure, conventions, and patterns
- Understanding of container security basics - non-root users, UID/GID, image layers, multi-arch builds, supply chain concepts
- Some Go ability - enough to read and write test code, not to build distributed systems
- A maintainer mindset - you take pride in consistency, catch drift from patterns, and think about how your change affects others downstream
- Familiarity with GitHub-heavy open source workflows - PRs, upstream tracking, monorepo conventions
Benefits
Comp & perks- Freedom & flexibility; fit your work around your life
- Designated quarterly Whaleness Days plus end of year Whaleness break
- Home office setup; we want you comfortable while you work
- 16 weeks of paid Parental leave (after 6 months of employment)
- Technology stipend equivalent to $100 USD net/month
- PTO plan that encourages you to take time to do the things you enjoy
- Training stipend for conferences, courses and classes
- Equity; we are a growing start-up and want all employees to have a share in the success of the company
- Docker Swag
- Medical benefits, retirement and holidays vary by country
- Remote-first culture, with offices in Seattle and Paris
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
GoYAMLKubernetesHelmcontainer securityintegration testingversion controldependency managementOSS project managementsemver
Soft Skills
maintainer mindsetattention to detailproblem-solvingcollaborationcommunication
Certifications
Bachelor’s degree in Computer ScienceBachelor’s degree in Engineeringrelated field degree