• Design, build, and maintain secure CI/CD pipelines with security gates that catch issues before they reach production. • Systematically, consistently and automatically capture the risk exposure of Chainguard's products. • Implement and enforce software supply chain security controls: signed artifacts, SBOMs, provenance attestation (SLSA, Sigstore / Cosign). • Proactively identify emerging customer security needs, and build solutions to meet these. • Lead security architecture reviews and threat models for Kubernetes-based workloads running on GCP and AWS. • Harden container images, Kubernetes cluster configurations, and cloud IAM postures — minimising attack surface across our product stack. • Define and drive adoption of baseline security standards: pod security standards, network policies, workload identity, secrets management. • Evaluate and operationalise CNAPP / CSPM tooling to maintain continuous visibility into cloud-native risk.

• Design, build, and maintain secure CI/CD pipelines with security gates that catch issues before they reach production. • Systematically, consistently and automatically capture the risk exposure of Chainguards products. • Implement and enforce software supply chain security controls: signed artifacts, SBOMs, provenance attestation (SLSA, Sigstore / Cosign). • Proactively identify emerging customer security needs, and build solutions to meet these. • Lead security architecture reviews and threat models for Kubernetes-based workloads running on GCP and AWS. • Harden container images, Kubernetes cluster configurations, and cloud IAM postures — minimising attack surface across our product stack. • Define and drive adoption of baseline security standards: pod security standards, network policies, workload identity, secrets management. • Evaluate and operationalise CNAPP / CSPM tooling to maintain continuous visibility into cloud-native risk.

• Act as the primary technical point of contact for MLPS assessments and Chinese regulatory inquiries. • Explain Dashboard infrastructure, system architecture, data flows, and security controls to assessors and regulators. • Partner with global Compliance and Security teams to prepare evidence, documentation, and responses for MLPS. • Coordinate with Engineering Teams to validate and implement required controls. • Track regulatory changes in China and assess impact to Dashboard services. • Contribute to audit readiness, remediation efforts, and continuous compliance improvements.

• Build and configure a COMS mock-up environment within the NATO Software Factory • Recreate Jira and Confluence workflows, processes, plugins, and integrations • Implement automation and synchronization mechanisms between environments • Analyse and document functional and non-functional requirements • Produce technical documentation suitable for third-party vendors • Create demonstration materials and technical walkthroughs • Support live demonstrations and stakeholder presentations • Collaborate with NATO and NCIA subject matter experts