Staff Product Security Engineer
ChainguardUnited States
Posted May 6, 2026
17000 - 231000 USD
Full Time
About the Company
No company description available.
Job Description
Chainguard is a venture-backed company that delivers hardened, secure, and production-ready builds of open source software. As a Staff Product Security Engineer, you will be responsible for designing, building, and maintaining secure CI/CD pipelines, as well as hardening container images and cloud IAM postures.
Requirements
- 7+ years in software engineering, security engineering, or a combined role with meaningful hands-on security responsibility throughout.
- Strong proficiency in Go or Python, with the ability to write, review, and debug production-quality code.
- Deep, hands-on experience with Kubernetes in production (cluster hardening, RBAC, network policies, admission controllers).
- Practical expertise with GCP and/or AWS: IAM, workload identity, secrets management, security services (e.g., GCP Security Command Center, AWS Security Hub).
- Proven track record designing and securing CI/CD pipelines (GitHub Actions, Cloud Build, Tekton, or similar).
- Fluency with container security: image scanning, distroless/minimal base images, runtime security.
- Experience with software supply chain security tooling and frameworks (Sigstore, SLSA, SBOM generation).
- Solid understanding of OWASP, NIST, and cloud security frameworks and how to apply them pragmatically.
Benefits
- Flexible & Remote-First Culture
- Our Approach to Equity
- 100% Covered Health Insurance
- ∞ Flexible Time Off
- 18 Weeks Paid Parental Leave