Staff Supply Chain Security Engineer, Docker Hardened Images
New
D
DockerDeveloper Tooling
Location: Canada; Secondary Locations: United StatesFull-TimeStaff
Salary166,500 - 269,500 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 8+ years
- Required Skills
- DockerKubernetesGoHelm
Requirements
- 8+ years of backend engineering experience with production-grade systems
- Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent practical experience
- Deep expertise in the container and Kubernetes ecosystem
- Mastery of YAML as a working medium
- Strong container security background including non-root users, UID/GID, image layers, multi-arch builds, and supply chain concepts
- Go ability sufficient to design test infrastructure
- A maintainer mindset, applied at scale
- Strong technical judgment in ambiguous situations
- Track record of technical influence without authority
- Deep familiarity with GitHub-heavy open source workflows
Responsibilities
- Setting catalogue-wide technical direction - defining the conventions, patterns, and architectural decisions that govern how images and Helm charts are authored across DHI
- Owning the hardest packaging problems - images and charts with complex upstream dynamics
- Authoring and maintaining image definition files that track upstream OSS releases
- Adapting upstream Helm charts to work with DHI images, handling security constraints and Kubernetes compatibility
- Driving security hardening strategy - leading CVE triage, hardening decisions, and supply chain posture (Sigstore, SBOM, SLSA)
- Designing and writing Go-based integration test infrastructure
- Raising the bar through review and mentorship of peers
- Partnering across teams with product, security, and customer-facing functions
- Engaging upstream - representing DHI in upstream OSS communities
- Take part in the paid on-call rotation for the team
View Full Description & ApplyYou'll be redirected to the employer's site
