🛠 Tech Stack

💼 About This Role

You'll join Docker's Desktop team to own the security posture of a complex, cross-platform product used by millions of developers. You'll be the primary security voice for the team, reviewing features and code before they ship. This role offers a chance to shape security practices at a company central to modern software development.

🎯 What You'll Do

• Partner with engineering teams for security risk identification during design and code reviews.
• Conduct threat modeling and security design reviews for new features.
• Act as primary liaison to central security group and translate policy into decisions.
• Triage and coordinate remediation for vulnerability reports and CVEs.
• Review Go code for security issues and contribute security improvements.

📋 Requirements

• 6+ years of experience in security or application engineering.
• Strong proficiency in Go for code review and contributions.
• Deep Linux container security understanding: namespaces, cgroups, seccomp, AppArmor.
• Hands-on with OCI runtimes like runc, containerd, or BuildKit.

✨ Nice to Have

• Experience with OAuth 2.0, OIDC, and auth flows.
• Familiarity with vulnerability management and CVE processes.

🎁 Benefits & Perks

• 🌍 Remote-first culture with global flexibility.
• 🏖️ Quarterly Whaleness Days plus year-end break.
• 💻 Home office setup stipend.
• 👶 16 weeks paid parental leave.
• 📱 Technology stipend of $10,000.

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager· 45 min