Senior Software Engineer, Supply Chain Security

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior Software Engineer, Supply Chain Security in Washington (USA).

As a Senior Software Engineer in Supply Chain Security, you will contribute to building and maintaining secure container images and related developer tooling to protect the software supply chain. You will work closely with cross-functional teams to develop and enhance automated build systems, implement security best practices, and address vulnerabilities in a fast-paced, customer-focused environment. The role emphasizes hands-on engineering with open-source software, Linux distributions, BuildKit, GitHub Actions, and security scanning tools. You will collaborate with stakeholders to improve the developer experience while ensuring compliance with security standards. This position offers opportunities to shape tooling, contribute to generative AI systems for automation, and engage directly with end users. Your work will directly impact the security and reliability of containerized applications for a global developer community. The role allows flexibility through remote work with regular interaction across teams and customers.

Accountabilities:
• Design, create, and maintain secure container images and related metadata, such as SBOMs and vulnerability reports.
• Maintain and enhance SLSA Build Level 3 compliant build systems using BuildKit and GitHub Actions.
• Ensure the security posture and developer experience of containerized software are maintained and improved.
• Collaborate with cross-functional teams, including engineering, security, and customer-facing teams, to implement best practices.
• Troubleshoot and remediate vulnerabilities across the image catalog, contributing to custom CVE feeds.
• Support and train new team members, providing guidance on secure image creation and tooling usage.
• Contribute to the development of automation tools and generative AI systems to optimize image creation and maintenance.

Requirements

 • Proven experience building container images using BuildKit or equivalent systems.
• Deep understanding of container image primitives, including manifests, indices, digests, and attestations.
• Familiarity with Linux distributions and compiling software from source.
• Experience with continuous integration systems, especially GitHub Actions.
• Knowledge of software security tools for container ecosystems, such as Docker Scout.
• Strong problem-solving and collaboration skills, capable of working in remote and fast-paced environments.
• Customer-focused mindset with the ability to interact directly with developers and stakeholders.
• Ability to automate repetitive tasks and contribute to generative AI-assisted workflows.
• Experience with secure software supply chain practices and SLSA standards preferred.
• Bachelor’s degree in Computer Science, Software Engineering, or related field, or equivalent professional experience.

Benefits

 • Competitive salary range ($189.6K – $260.7K) with equity participation.
• Freedom and flexibility with remote work arrangements.
• 16 weeks of paid parental leave.
• Home office setup and technology stipend for work equipment.
• PTO plan encouraging personal time and quarterly company-wide hackathons.
• Training stipend for professional development, courses, and conferences.
• Comprehensive health, retirement, and insurance benefits (country-specific).
• Access to company swag and equity opportunities for long-term growth.
• Inclusive, diverse, and collaborative team environment that values innovation.

Jobgether is a Talent Matching Platform that partners with companies worldwide to efficiently connect top talent with the right opportunities through AI-driven job matching.
When you apply, your profile goes through our AI-powered screening process designed to identify top talent efficiently and fairly.
🔍 Our AI evaluates your CV and LinkedIn profile thoroughly, analyzing your skills, experience and achievements.
📊 It compares your profile to the job’s core requirements and past success factors to determine your match score.
🎯 Based on this analysis, we automatically shortlist the 3 candidates with the highest match to the role.
🧠 When necessary, our human team may perform an additional manual review to ensure no strong profile is missed.
The process is transparent, skills-based, and free of bias — focusing solely on your fit for the role.
Once the shortlist is completed, we share it directly with the company that owns the job opening. The final decision and next steps (such as interviews or additional assessments) are then made by their internal hiring team.
Thank you for your interest!

#LI-CL1