Container Security Engineer

Posted:
6/25/2026, 1:30:17 AM

Location(s):
Texas, United States ⋅ Fort Worth, Texas, United States ⋅ Pennsylvania, United States ⋅ Dallas, Texas, United States ⋅ North Carolina, United States ⋅ Charlotte, North Carolina, United States ⋅ Malvern, Pennsylvania, United States

Experience Level(s):
Mid Level ⋅ Senior

Field(s):
DevOps & Infrastructure ⋅ IT & Security ⋅ Software Engineering

Workplace Type:
Hybrid

Duties and Responsibilities

  • Lead hands-on container security efforts across AWS environments (ECS, EKS, and Serverless), including image scanning, runtime visibility, and risk remediation.

  • Utilize Wiz to assess and remediate container, cloud configuration, and workload risks across build and runtime environments with risk-based prioritization.

  • Drive implementation and maturity of container security controls, including coverage, enforcement, and operational monitoring.

  • Assess vulnerabilities across container images, dependencies, and deployment pipelines, and drive remediation with engineering teams.

  • Develop and implement strategies to secure cloud-native workloads with a focus on containers and serverless architectures across AWS, extending consistent security controls to other cloud platforms (Azure, GCP) where applicable.

  • Partner with platform and engineering teams to ensure secure configurations, hardened base images, and consistent runtime protection.

  • Identify and execute automation opportunities to improve container security processes and reduce manual effort.

  • Leverage AI/ML-driven capabilities to enhance container and cloud threat detection, enable risk-based prioritization, and support automated remediation across build and runtime environments.

  • Gather and report metrics to provide visibility into container security posture and program maturity.

  • Provide guidance and training on secure container development, image hygiene, and deployment best practices.

  • Maintain documentation for container security processes, tools, and standards. 

Qualifications

  • Undergraduate degree in a related field or equivalent experience.

  • Strong hands-on experience securing containerized environments in AWS (ECS/EKS) and serverless workloads, with working knowledge of container platforms in other cloud providers (Azure AKS, GCP GKE)

  • Experience with Wiz for container, cloud, and configuration risk visibility and remediation.

  • Strong understanding of container lifecycle, image management, and runtime security concepts.

  • Experience with CI/CD pipelines, cloud-native architectures, and deployment processes.

  • Experience with application security tools (SAST, SCA, IAST, DAST) is a plus.

  • Familiarity with industry frameworks such as NIST, OWASP, and MITRE.

  • Relevant certifications in cloud, containers, or DevSecOps are a plus.

Special Factors

Sponsorship

Vanguard is not offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a mission—we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.