ChainguardRemote
Security Engineer, Governance and Trust
United States of America
Full Time
3 weeks ago
H1B Sponsor Likely
Key skills
GitGitHubPythonBashSQLData wranglingETL pipelinesSecurity engineeringRisk analysisAI toolsBigQueryCuriositylearning mindsetGoShellAIClaudeLangChainLangGraphETLData EngineeringData LakeAnalyticsCommunicationCollaboration
About this role
Chainguard is the trusted source for open source, helping organizations build faster and stay compliant. The Security Engineer (Governance & Trust) role involves building governance and trust as code, automating control evidence collection, and partnering with various teams to enhance the software supply chain's security.
Responsibilities:
- Design and wire up repositories in Git/GitHub for controls, assets, and risk scenarios so they’re versioned, reviewable, and automation-friendly
- Build ingest & ETL pipelines into a trust data lake (e.g., BigQuery) to pull in signals from systems across Chainguard
- Automate control evidence collection
- Productionize a Python risk engine, turning a working prototype into something reliable, observable, and maintainable
- Use Python, Bash, and SQL to wrangle data, stitch systems together, and eliminate repetitive work
- Partner with engineering teams to make governance and trust part of the platform
- Lean on and extend AI tooling (including orchestration frameworks like LangChain or LangGraph) to speed up analysis, data work, and automation
- Contribute to a remote-first, low-ego team culture where feedback flows freely and we optimize for outcomes, not theatrics
- You’ll have clear ownership of meaningful pieces of the system, with a manager and teammates who’ll help you prioritize and grow your scope over time
Requirements:
- 1–3 years of experience in a relevant area: data engineering, analytics, security engineering, SRE, or similar hands-on technical role
- Comfortable with Git/GitHub and modern software workflows (branches, PRs, code review, CI, etc.)
- Practical experience with Python for scripting and small tools
- Practical experience with Bash or similar shell scripting
- Practical experience with SQL for querying and joining data (nothing exotic—solid fundamentals go a long way)
- Some exposure to data wrangling and ETL concepts (pipelines, schemas, making messy data usable)
- A critical, analytical mindset: you care about the 'why,' not just the 'what,' and you're comfortable zooming from big picture into the weeds
- Genuine curiosity and learning mindset: you like picking up new tools and patterns, especially around security, risk, and data
- Strong collaboration and communication skills in a remote setting: clear writing, proactive updates, low ego
- Comfort using AI tools (ChatGPT, Claude, etc.) day-to-day, and excitement about orchestrating them into real workflows over time
- Experience with BigQuery or another columnar data warehouse
- Familiarity with statistics and probability, especially applied to risk or uncertainty
- Prior work in a remote-first company