Senior Supply Chain Security Engineer

Docker3 days ago

Location

Canada

Workplace

Remote

Type

Full Time

Salary

USD 150,000 – 200,000

Level

Senior

Role

Senior Supply Chain Security Engineer

Posted

May 12, 2026

Full TimeRemoteSenior

The role

Summary

Docker is seeking a Senior Supply Chain Security Engineer to join their Docker Hardened Images (DHI) team, focusing on creating and maintaining security-hardened container images and Helm charts. The role is critical in packaging, securing, and adapting open-source software for enterprise-grade container ecosystems, with a strong emphasis on security, infrastructure, and container technology.

What you'll do

Image Definition Management: Author and maintain image definition files tracking upstream OSS project releases, defining build steps, and keeping the catalogue current across multiple images

Helm Chart Adaptation: Modify upstream Helm charts to work with DHI images, addressing security constraints, non-root contexts, and Kubernetes compatibility concerns

Version Tracking: Monitor upstream version releases and semver patterns across monorepos and standard repositories, managing major version breaks and dependency chains

Integration Testing: Develop Go-based integration tests to validate image and chart behavior in real Kubernetes environments

Security Hardening: Triage CVEs and contribute to security hardening decisions across container images

Code Review: Review peers' definitions and chart pull requests against established conventions, identifying and preventing potential issues

What we look for

Technical

Container EcosystemExtensive familiarity with Kubernetes, container technologies, and related tools like cert-manager, kyverno, grafana, and istio

YAML ExpertiseAdvanced understanding of YAML structure, conventions, and configuration patterns

Go ProgrammingProficiency in Go for writing integration tests and reading source code

Container SecurityComprehensive knowledge of container security fundamentals including non-root users, UID/GID management, image layers, and supply chain security

Education

Academic BackgroundBachelor's degree in Computer Science, Engineering, or related field, or equivalent practical experience

Experience

Backend Engineering6+ years of production-grade backend engineering experience

Skills

Required skills

Container SecurityDeep understanding of container security principles and implementation

KubernetesHands-on experience with Kubernetes ecosystem and deployments

Open Source WorkflowsProficiency with GitHub-based open source collaboration methods

Nice to have

Package MaintenanceExperience maintaining packages for Linux distributions or package managers

Helm ChartsPrior experience authoring or contributing to Helm charts

Supply Chain ToolingFamiliarity with supply chain security tools like Sigstore, SBOM, and SLSA

Compensation & benefits

Salary

USD 150,000 – 200,000 (annual)

Stock options

Available

Benefits

Remote Work Flexibility

Remote-first culture with work flexibility to fit life around work

Quarterly Breaks

Designated quarterly Whaleness Days and end-of-year Whaleness break

Home Office Support

Home office setup with technology stipend of $100 USD/month

Parental Leave

16 weeks of paid parental leave after 6 months of employment

Professional Development

Training stipend for conferences, courses, and classes

Equity Compensation

Stock options to share in the company's success

Interview process

1
Initial Screening — Review of application and initial candidate assessment
2
Technical Interview — Detailed discussion of container security, Kubernetes, and technical capabilities
3
Practical Assessment — Hands-on evaluation of skills in YAML configuration, container security, and test development
4
Final Interview — Discussion with team leadership about role fit and long-term potential