About the Job:
As the most widely used Linux distribution, Ubuntu underpins the security of the entire internet. The role of Security Engineering Manager directly impacts the safety and security of millions of users worldwide. Join a team of security experts dedicated to protecting the open-source ecosystem and driving innovation. Your leadership will be instrumental in addressing emerging threats, developing robust security measures, and ensuring the continued integrity of Ubuntu.
This opportunity involves leading the charge to set the security standards for open-source software across the Ubuntu platform, from desktops, servers, and edge devices to cloud infrastructure, Kubernetes, and OpenStack. You will certify core components to meet industry standards and guide development teams in security best practices. Key areas of focus include cryptographic modules (FIPS 140) and system hardening, collaborating with industry partners like CIS and DISA.
Responsibilities:
- Lead and develop a team of engineers, ranging from graduate to senior levels.
- Coach, mentor, and offer career development feedback.
- Identify and measure team health indicators.
- Implement disciplined engineering processes.
- Represent your team and product to stakeholders, partners, and customers.
- Develop and evangelize great engineering and organizational practices.
- Plan and manage progress on agreed goals and projects.
- Support product and customer compliance with strict security requirements such as FIPS, CIS, STIG, and FedRAMP.
- Collaborate on specific cryptography modules (FIPS 140) and system hardening efforts with industry partners.
Qualifications:
- Exceptional academic track record, preferably with a degree in Computer Science or a related STEM field.
- Excellent verbal and written communication skills in English.
- A proven ability to develop and grow engineering talent.
- Strong organizational skills ensuring timely, high-quality results.
- Prior experience with FIPS/Common Criteria certified products and familiarity with related standards.
- Experience working directly with DISA-STIG or CIS benchmarks.
- Knowledgeable and passionate about software and application security.
- Solid experience in an agile development environment.
- Ability to travel twice a year for up to two weeks each.
Optional Qualifications:
- Hands-on domain knowledge of Linux cryptography libraries (OpenSSL, GnuTLS).
Compensation and Benefits:
Canonical offers competitive compensation based on geographical location, experience, and performance, with an annual review process. Additional benefits include:
- Remote work environment with in-person team sprints twice a year.
- Personal learning and development budget of USD 2,000 per year.
- Recognition rewards and annual holiday leave.
- Maternity and paternity leave.
- Employee Assistance Programme.
- Opportunities to travel for company events.
Company Overview:
Canonical is a pioneering tech company at the forefront of the global move to open source. As the publisher of Ubuntu, one of the most significant open-source projects, Canonical is committed to delivering the world's best open-source platform while fostering a diverse and inclusive workplace.
