Contract Specialist
Colibri GroupFull Time
Mid-level (3 to 4 years), Senior (5 to 8 years)
Candidates should have 1-2 years of hands-on Linux experience and fluency in packaging formats like APK, RPM, DEB, Snap, or Flatpak. Experience building and debugging container images, practical knowledge of Kubernetes, Helm, and Terraform, and proficiency in at least one programming language (Go, Python, or Shell) are required. Strong debugging and problem-solving skills, along with an obsession with quality and details, are essential. Bonus points for active open source contributions or experience with vulnerability management.
The Contract Engineer will build and refine Melange packages for Wolfi and Chainguard repositories, focusing on security, quality, size, and repeatability. They will produce container images for public and private use, incorporating a full suite of tests. Responsibilities include designing and implementing automated tests, prioritizing and addressing requests from a backlog to ship images, and applying and evolving production standards to ensure high-quality releases.
Supply chain risk management and audits
Chainguard specializes in managing risks in supply chains, particularly for businesses that rely on software. They conduct audits to identify risks and provide detailed reports with recommendations for improvement. Their unique offering includes a curated base container image distro, which helps businesses transition to secure software environments. Chainguard also provides supply chain observability services, allowing companies to track their software's origins and dependencies.