Senior Security Engineer, Docker Desktop

🕒 April 28

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Docker, Inc

Docker, Inc

51 - 200 employees

💰 $105M Series C on 2022-03

At Docker, we simplify the lives of developers who are making world-changing apps. Docker helps developers bring their ideas to reality by conquering the complexity of app development. We simplify and accelerate workflows with an integrated development pipeline and application components. Actively used by millions of developers around the world, Docker Desktop and Docker Hub provide unmatched simplicity, agility and choice.

📋 Description

• Partner with engineering and product teams throughout the development lifecycle to identify security risks early, from design review through code review and release. • Conduct threat modeling and security design reviews for new and evolving product features, with particular focus on authentication, authorization, and container runtime security. • Serve as the team's primary liaison to the organization's security group, attending security syncs, relaying guidance, and translating central policy into practical engineering decisions. • Act as the first point of contact for incoming vulnerability reports and CVEs: validate severity, reproduce issues, coordinate disclosure timelines, and drive remediation with the relevant engineers. • Review Go code with a security mindset, identifying classes of issues such as privilege escalation, insecure defaults, injection risks, and improper credential handling. • Contribute security-focused improvements directly to the codebase where appropriate. • Develop and maintain internal security documentation, guidelines, and runbooks for the team. • Stay current on the Linux security landscape as it pertains to containers: namespaces, cgroups, seccomp, AppArmor, capabilities, and the evolving OCI ecosystem.

🎯 Requirements

• 6+ years of experience in security engineering, application security, or a closely related discipline, with a track record at senior or staff level. • Strong proficiency in Go, with the ability to review and contribute to production-grade code. • Deep understanding of Linux fundamentals relevant to container security: namespaces, cgroups, capabilities, seccomp profiles, AppArmor/SELinux, rootless containers, and privilege boundaries. • Solid grasp of OCI specifications and container runtime security (e.g. runc, containerd, BuildKit). • Hands-on experience with identity and access management concepts: OAuth 2.0, OIDC, token handling, and auth flows in desktop or cloud-adjacent contexts. • Experience performing security design reviews, threat modeling, and participating in secure development workflows. • Familiarity with vulnerability management processes: CVE triage, CVSS scoring, coordinated disclosure, and working with external reporters. • Strong written and verbal communication skills; comfortable bridging the gap between a dedicated security team and a product engineering team.

🏖️ Benefits

• Freedom & flexibility; fit your work around your life • Designated quarterly Whaleness Days plus end of year Whaleness break • Home office setup; we want you comfortable while you work • 16 weeks of paid Parental leave • Technology stipend equivalent to $100 net/month • PTO plan that encourages you to take time to do the things you enjoy • Training stipend for conferences, courses and classes • Equity; we are a growing start-up and want all employees to have a share in the success of the company • Docker Swag • Medical benefits, retirement and holidays vary by country • Remote-first culture, with offices in Seattle and Paris

Apply Now

Similar Jobs

🕒 April 22

Workleap

201 - 500

👥 HR Tech

☁️ SaaS

⚡ Productivity

Application Security Lead at Workleap enhancing security in development pipelines. Responsible for the security integration in product development and collaboration across teams.

🇨🇦 Canada – Remote

💵 $150k - $180k / year

💰 Private Equity Round on 2023-06

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🗣️🇫🇷 French Required

🕒 April 22

Workleap

201 - 500

👥 HR Tech

☁️ SaaS

⚡ Productivity

Application Security Manager at Workleap embedding security in products and development workflows. You will write code, build tooling, and ensure secure software delivery.

🇨🇦 Canada – Remote

💵 $150k - $180k / year

💰 Private Equity Round on 2023-06

⏰ Full Time

🟠 Senior

🔴 Lead

👮‍♂️ Cybersecurity / Security Engineer

🕒 April 21

Samsara

1001 - 5000

🏢 Enterprise

🚗 Transport

🔐 Security

Senior Security Engineer maintaining and operating Samsara’s security infrastructure. Collaborating with global teams to build security engineering programs utilizing modern principles.

🇨🇦 Canada – Remote

💵 $132.6k - $171.6k / year

💰 Seed Round on 2014-08

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🕒 April 7

Sophos

1001 - 5000

🔒 Cybersecurity

☁️ SaaS

Senior Software Engineer developing AI-powered security products at Sophos. Owning end-to-end product development from idea to production across frontend, backend, and APIs.

🇨🇦 Canada – Remote

💵 $125k - $255k / year

💰 Post-IPO Equity on 2021-08

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🕒 April 1

Entrust

1001 - 5000

🔒 Cybersecurity

💸 Finance

🏛️ Government

Compliance Manager overseeing compliance processes and frameworks for Data Security Services at Entrust. Ensuring DSS products meet or exceed industry standards and mitigate compliance risks.