Job Description:
• Design, build, and maintain secure Linux-based operating system components
• Own end-to-end CVE remediation across Linux OS packages and system libraries
• Analyze vulnerabilities affecting core OS components
• Validate upstream fixes and determine patching or backporting strategies
• Build and maintain secure, minimal, production-ready container images
• Generate and maintain SBOMs for OS packages and container images
• Design and scale automated pipelines for OS patching, package rebuilding, and image generation
• Partner with platform, DevOps, infrastructure, and security teams
Requirements:
• 5+ years in Linux systems engineering, OS engineering, platform engineering, DevSecOps, or release engineering
• Deep expertise in Linux operating systems and distributions (Debian, RHEL, Ubuntu, Alpine)
• Strong experience with OS package management systems (apt, rpm, dnf, apk)
• Hands-on experience patching, rebuilding, or maintaining OS packages
• Strong understanding of Linux internals (processes, memory, filesystem, system libraries)
• Experience working with system-level libraries and dependencies (glibc, openssl, etc.)
• Deep knowledge of dependency resolution, ABI compatibility, and package lifecycle management
• Experience with container internals and Linux runtime behavior
• Experience remediating CVEs in OS packages and container environments
• Understanding of SBOMs, software provenance, signing, and artifact trust models
• Familiarity with supply chain security frameworks (e.g., SLSA, reproducible builds)
• Strong scripting/programming ability in Python, Bash, Go, or C/C++
Benefits:
• health, dental, and vision insurance
• paid time off
• equity participation