Senior Security Engineer, Application & Cloud
Rad AI- Full Time
- Senior (5 to 8 years)
Candidates should possess experience building container images with BuildKit, a strong understanding of low-level container image primitives such as manifests, indices, and digests, familiarity with Linux distributions and compiling software from source, and experience with continuous integration systems, particularly GitHub Actions. Knowledge of software security tooling like Docker Scout is also required.
The Software Engineer, Supply Chain Security will create and support secure container images and related metadata like SBOMs and vulnerabilities, collectively own the security posture and developer experience of using secure container images, maintain and enhance SLSA Build Level 3 compliant build system leveraging BuiltKit and GitHub Actions, collect and analyze vulnerabilities, and contribute to custom CVE feeds and remediate vulnerabilities across the image catalog, while also interacting with customers using the images and helping to shape the tooling that makes these images as easy to work with as Docker Official Images.
Containerization platform for application development
Docker offers a containerization platform that enables developers to build, share, and run applications in isolated environments called containers. These containers package applications with their dependencies, ensuring consistent performance across different stages of development and deployment. Docker stands out from competitors by simplifying the development process and enhancing collaboration, with a freemium business model that includes various subscription tiers and services like Docker Hub and Docker Desktop. The company's goal is to streamline software development and deployment, making it easier for developers to manage applications efficiently.