Staff Product Security Engineer
New
C
ChainguardSoftware Security
United Kingdom - RemoteFull-TimeStaff
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 7+ years
- Required Skills
- AWSPythonGCPKubernetesGoCI/CD
Requirements
- 7+ years in software engineering, security engineering, or a combined role.
- Strong proficiency in Go or Python.
- Deep, hands-on experience with Kubernetes in production.
- Practical expertise with GCP and/or AWS IAM, secrets management, and security services.
- Proven track record designing and securing CI/CD pipelines (e.g., GitHub Actions, Tekton).
- Fluency with container security (image scanning, minimal base images, runtime security).
- Experience with software supply chain security tooling (Sigstore, SLSA, SBOM).
- Solid understanding of OWASP, NIST, and cloud security frameworks.
Responsibilities
- Design, build, and maintain secure CI/CD pipelines with security gates.
- Systematically and automatically capture risk exposure of products.
- Implement software supply chain security controls including SLSA and Sigstore/Cosign.
- Lead security architecture reviews and threat models for Kubernetes-based workloads.
- Harden container images, Kubernetes configurations, and cloud IAM postures.
- Define and drive adoption of baseline security standards like pod security and network policies.
- Evaluate and operationalize CNAPP / CSPM tooling.
View Full Description & ApplyYou'll be redirected to the employer's site
