Senior Product Security Engineer

Chainguard is the trusted source for open source. By delivering hardened, secure, and production-ready builds of all the open source software engineers and AI agents rely on, Chainguard helps organizations build faster, stay compliant, and eliminate risk. Our customers include Fortune 500 enterprises and global industry leaders, including Anduril, Canva, Fortinet, Hewlett Packard Enterprise, OpenAI, Snap Inc., and Snowflake. Chainguard is venture-backed by leading investors, including Amplify, IVP, Kleiner Perkins, Lightspeed Venture Partners, Mantis VC, Redpoint Ventures, Sequoia Capital, and Spark Capital. Senior Product Security Engineer The role in a nutshell: You are a deeply technical engineer who gets restless when pipelines aren't locked down. You care about shipping secure software! At Chainguard, you won't be a gate at the end of the process; you'll be embedded in it. What you’ll do: Build & Harden Secure Pipelines Design, build, and maintain secure CI/CD pipelines with security gates that catch issues before they reach production. Systematically, consistently and automatically capture the risk exposure of Chainguards products. Implement and enforce software supply chain security controls: signed artifacts, SBOMs, provenance attestation (SLSA, Sigstore / Cosign). Proactively identify emerging customer security needs, and build solutions to meet these. Cloud-Native Pro