Senior Supply Chain Security Engineer

DockerDocker·Remote(Canada)
Software Development

WFA Digital Insight

As the demand for secure and reliable software delivery grows, the need for skilled supply chain security engineers is on the rise. With 85% of companies adopting cloud-native technologies, the market is ripe for experts who can secure critical infrastructure. Docker, a leader in developer tooling, is seeking a seasoned professional to join their team, offering a unique opportunity to work remotely and shape the future of secure software development. With Docker's commitment to remote work and cutting-edge technology, this role stands out in the current job market. Candidates should be prepared to demonstrate their expertise in container security, Kubernetes, and open-source workflows.

Job Description

About the Role

Docker is a globally distributed, remote-first team building the tools that define how software gets built and delivered. As a Senior Supply Chain Security Engineer, you will play a critical role in ensuring the security and reliability of Docker's products, particularly the Docker Hardened Images (DHI) catalogue. This catalogue provides security-hardened, enterprise-grade container images and Helm charts for regulated and security-conscious environments. Your day-to-day work will involve collaborating with cross-functional teams to identify and mitigate security risks, authoring and maintaining image definition files, and adapting upstream Helm charts to work with DHI images. You will also be responsible for tracking upstream version releases, writing Go-based integration tests, and triaging CVEs. The team you will be working with is passionate about delivering high-quality products and is committed to remote work. You will have the opportunity to work with a talented group of engineers who share your passion for security, containers, and open-source technologies.

What You Will Do

  • Author and maintain image definition files that track upstream OSS project releases, define build steps, and keep the catalogue current across dozens of images
  • Adapt upstream Helm charts to work with DHI images, handling security constraints, non-root contexts, and Kubernetes compatibility concerns
  • Track upstream version releases and semver patterns across monorepos and standard repos, handling major version breaks and dependency chains
  • Write Go-based integration tests that validate images and charts behave correctly in real Kubernetes environments
  • Triaging CVEs and contributing to security hardening decisions across images
  • Review peers' definitions and chart PRs against established conventions and catch subtle issues before they reach customers
  • Collaborate with cross-functional teams to identify and mitigate security risks
  • Develop and maintain documentation for image definition files and Helm charts
  • Participate in code reviews and contribute to the improvement of the codebase

What We Are Looking For

  • 6+ years of backend engineering experience with production-grade systems
  • Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent practical experience
  • Strong familiarity with the container and Kubernetes ecosystem
  • Comfort with YAML as a primary working medium
  • Understanding of container security basics - non-root users, UID/GID, image layers, multi-arch builds, supply chain concepts
  • Some Go ability - enough to read and write test code
  • A maintainer mindset - you take pride in consistency, catch drift from patterns, and think about how your change affects others downstream
  • Familiarity with GitHub-heavy open source workflows - PRs, upstream tracking, monorepo conventions
  • Experience working in a regulated or security-conscious environment

Nice to Have

  • Experience as a package maintainer (any Linux distribution, Homebrew, etc.)
  • Helm chart authorship or contribution experience
  • Familiarity with supply chain tooling (Sigstore, SBOM, SLSA)
  • Experience working with containerized applications and microservices

Benefits and Perks

  • Competitive compensation package
  • Opportunity to work with a talented team of engineers
  • Flexible working hours and remote work options
  • Access to cutting-edge technologies and tools
  • Professional development opportunities
  • Health and wellness benefits
  • Generous paid time off policy
  • Retirement savings plan
  • Employee stock options

How to Stand Out

  • To stand out as a candidate, be prepared to showcase your experience with container security, Kubernetes, and open-source workflows.
  • Make sure to highlight your understanding of supply chain concepts and your ability to work with YAML definition files.
  • A strong portfolio that demonstrates your skills in adapting upstream Helm charts and writing Go-based integration tests will be a significant advantage.
  • Be prepared to discuss your experience working in a regulated or security-conscious environment and how you handled security risks and mitigations.
  • Don't hesitate to ask about the company culture and the team you will be working with during the interview process.
  • Be prepared to negotiate your salary based on your experience and the market standards.
  • Research Docker's products and services to understand their commitment to security and reliability, and be prepared to discuss how your skills align with their goals.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.