Senior DevSecOps Engineer - Design (Maintenance)

About CleanStart:

CleanStart is revolutionizing software supply chain security through our advancedvulnerability database platform and CleanStart product line. We provide hardened,vulnerability-free container images with built-in security, compliance, and performancebenefits. Our mission is to transform container security by eliminating pre-existingvulnerabilities and providing full visibility and control over the software supply chain.

Role Overview:

As a Senior DevSecOps Engineer on our Design Maintenance team, you will lead theongoing maintenance and evolution of our existing CleanStart container image designs.You will update image specifications to address new security vulnerabilities, improveperformance, and ensure compatibility with evolving software ecosystems. Your expertisewill be crucial in maintaining our zero-vulnerability standard across our container imageportfolio.

Key Responsibilities:

• Lead the maintenance and updating of existing container image designs
• Design security updates and patches for container images in response to newvulnerabilities
• Develop strategies for maintaining zero-vulnerability status in existing images
• Create specification updates for OS and package upgrades
• Design processes for validating security and functionality of updated images
• Collaborate with security researchers to address emerging vulnerabilities
• Optimize container image designs for performance and compatibility
• Mentor junior engineers on maintenance best practices
• Create and improve design standards for image maintenance
• Work with Build teams to ensure smooth implementation of design updates

Required Qualifications:

• 5+ years of experience in DevOps, infrastructure as code, or security engineering
• Strong understanding of container technologies and image lifecycle management
• Experience with software maintenance and update strategies
• Deep knowledge of Linux systems and package management
• Understanding of vulnerability management and patching processes
• Proficiency in scripting languages (Bash, Python, Go, etc.)
• Experience with CI/CD pipelines and automation
• Strong problem-solving and analytical skills
• Excellent communication and collaboration abilities

Preferred Qualifications:

• Experience with container image maintenance in production environments
• Knowledge of software supply chain security concepts
• Familiarity with vulnerability databases and security advisories
• Experience with minimalist container design principles
• Background in security engineering or secure operations
• Understanding of semantic versioning and compatibility management
• Experience with automated testing and validation
• Knowledge of compliance frameworks and requirements

‍