Job VC
Software Container Images Engineer with Docker and OCI
Technologies
Description
Svitla Systems Inc. is looking for a
Software Container Images Engineer with Docker and OCI
for a full-time position (40 hours per week) in Ukraine. Our client is a cloud-native cybersecurity company that helps organizations automatically and continuously minimize the attack surface of their cloud workloads.
You’ll join the Platform/Security Engineering Team to own the lifecycle of the curated container image catalog. You’ll be responsible for producing hardened, minimal, and continuously patched Docker images that downstream teams and customers rely on in production.
Requirements
Strong knowledge of Docker and OCI image internals — Dockerfile best practices, layer optimization, multi-stage builds, image scanning, and reproducible builds.
Hands-on experience writing and maintaining Helm charts and deploying applications to Kubernetes.
Knowledge of at least one scripting language (Bash, Python, or Go) for build automation and tooling.
Solid experience with Linux: package managers (apt, apk, yum/dnf), users/permissions, filesystems, and basic networking.
Familiarity with CI/CD systems (GitHub Actions, GitLab CI, Jenkins, or similar) and Git-based workflows.
Nice to have
Experience remediating CVEs and working with vulnerability scanners (Trivy, Grype, Snyk, Clair, or similar).
Familiarity with package build systems (apk, deb, rpm) or building software from source.
Familiarity with Kubernetes testing tools (helm test, kind, k3d, Testcontainers).
Understanding of compliance frameworks (FedRAMP, FIPS, CIS Benchmarks).
Responsibilities
Build and maintain curated, minimal, and hardened versions of popular Docker images (e.g., language runtimes, databases, web servers, data tools).
Triage, prioritize, and remediate CVEs across the image catalog — patching upstream packages, rebuilding affected images, and validating fixes against vulnerability scanners.
Design and improve image build pipelines, including multi-stage Dockerfiles, distroless/minimal base layers, SBOM generation, and image signing.
Write and maintain Helm charts (and supporting test harnesses) to validate that curated images function correctly when deployed to Kubernetes.
Author automation scripts and tooling to continuously rebuild, scan, test, and publish images on upstream changes or new CVE disclosures.
Investigate and reproduce build failures, runtime regressions, and compatibility issues introduced by patched dependencies.
Document image usage, breaking changes, and migration guidance for consumers.
We offer
US and EU projects based on advanced technologies.
Competitive compensation based on skills and experience.
Regular performance appraisals to support your growth.
Flexibility in workspace, either remote or in one of our development offices.
Comprehensive medical insurance, including dental and massages.
Personalized learning program tailored to your interests and skill development.
Sport reimbursement program for onsite and online activities.
Bonuses for recommendations of new employees.
Bonuses for article writing, public talks, and other activities.
20 vacation days, 10 national holidays and 5 sick leaves.
Maternity leave policy and family days off.
Free tech webinars and meetups organized by Svitla.
Welcome and anniversary presents, gifts for children, and more.
Regular corporate events and meetups.
Awesome team, friendly and supportive community!
Software Container Images Engineer with Docker and OCI
for a full-time position (40 hours per week) in Ukraine. Our client is a cloud-native cybersecurity company that helps organizations automatically and continuously minimize the attack surface of their cloud workloads.
You’ll join the Platform/Security Engineering Team to own the lifecycle of the curated container image catalog. You’ll be responsible for producing hardened, minimal, and continuously patched Docker images that downstream teams and customers rely on in production.
Requirements
Strong knowledge of Docker and OCI image internals — Dockerfile best practices, layer optimization, multi-stage builds, image scanning, and reproducible builds.
Hands-on experience writing and maintaining Helm charts and deploying applications to Kubernetes.
Knowledge of at least one scripting language (Bash, Python, or Go) for build automation and tooling.
Solid experience with Linux: package managers (apt, apk, yum/dnf), users/permissions, filesystems, and basic networking.
Familiarity with CI/CD systems (GitHub Actions, GitLab CI, Jenkins, or similar) and Git-based workflows.
Nice to have
Experience remediating CVEs and working with vulnerability scanners (Trivy, Grype, Snyk, Clair, or similar).
Familiarity with package build systems (apk, deb, rpm) or building software from source.
Familiarity with Kubernetes testing tools (helm test, kind, k3d, Testcontainers).
Understanding of compliance frameworks (FedRAMP, FIPS, CIS Benchmarks).
Responsibilities
Build and maintain curated, minimal, and hardened versions of popular Docker images (e.g., language runtimes, databases, web servers, data tools).
Triage, prioritize, and remediate CVEs across the image catalog — patching upstream packages, rebuilding affected images, and validating fixes against vulnerability scanners.
Design and improve image build pipelines, including multi-stage Dockerfiles, distroless/minimal base layers, SBOM generation, and image signing.
Write and maintain Helm charts (and supporting test harnesses) to validate that curated images function correctly when deployed to Kubernetes.
Author automation scripts and tooling to continuously rebuild, scan, test, and publish images on upstream changes or new CVE disclosures.
Investigate and reproduce build failures, runtime regressions, and compatibility issues introduced by patched dependencies.
Document image usage, breaking changes, and migration guidance for consumers.
We offer
US and EU projects based on advanced technologies.
Competitive compensation based on skills and experience.
Regular performance appraisals to support your growth.
Flexibility in workspace, either remote or in one of our development offices.
Comprehensive medical insurance, including dental and massages.
Personalized learning program tailored to your interests and skill development.
Sport reimbursement program for onsite and online activities.
Bonuses for recommendations of new employees.
Bonuses for article writing, public talks, and other activities.
20 vacation days, 10 national holidays and 5 sick leaves.
Maternity leave policy and family days off.
Free tech webinars and meetups organized by Svitla.
Welcome and anniversary presents, gifts for children, and more.
Regular corporate events and meetups.
Awesome team, friendly and supportive community!