Senior Supply Chain Security Engineer

This is a fully remote position, open to applicants in Canada.

📋 Description

• Creating and maintaining image definition files that monitor upstream OSS project releases, outline build processes, and ensure our catalogue remains up-to-date across numerous images.

• Modifying upstream Helm charts (such as cert-manager, grafana, mongodb, kyverno, and others) to function seamlessly with DHI images, addressing security requirements, non-root contexts, and Kubernetes compatibility issues.

• Monitoring upstream version releases and semver patterns across monorepos and standard repositories, managing major version changes and dependency relationships.

• Developing Go-based integration tests to ensure images and charts operate correctly in authentic Kubernetes environments.

• Assessing CVEs and participating in security hardening strategies for images.

• Evaluating colleagues' definitions and chart PRs against set standards, identifying subtle issues before they reach customers.

⛳️ Requirements

• Over 6 years of backend engineering experience with production-level systems.

• Bachelor’s degree in Computer Science, Engineering, or a related discipline, or equivalent practical experience.

• Strong knowledge of the container and Kubernetes ecosystem - you are familiar with cert-manager, kyverno, grafana, and istio, have deployed them, and can navigate upstream Helm chart source without confusion.

• Proficiency in YAML as your primary working medium - you carefully consider structure, conventions, and patterns.

• Basic understanding of container security principles - non-root users, UID/GID, image layers, multi-arch builds, and supply chain concepts.

• Some experience with Go - sufficient to read and write test code, but not necessarily to build distributed systems.

• A maintainer mindset - you take pride in maintaining consistency, identify deviations from patterns, and consider how your changes impact others downstream.

• Familiarity with GitHub-centric open source workflows - PRs, upstream tracking, and monorepo practices.

🏝️ Benefits

• Freedom & flexibility; adjust your work schedule to fit your life.

• Designated quarterly Whaleness Days plus an end-of-year Whaleness break.

• Home office setup; we want you to be comfortable while you work.

• 16 weeks of paid parental leave (after 6 months of employment).

• Technology stipend equivalent to $100 USD net/month.

• PTO plan that encourages you to take time for activities you enjoy.

• Training stipend for conferences, courses, and classes.

• Equity; as a growing start-up, we want all employees to share in the company's success.

• Docker Swag.

• Medical benefits, retirement, and holidays vary by country.

• Remote-first culture, with offices located in Seattle and Paris.