As the Engineering Manager for Security Standards and Hardening at Canonical, you will play a crucial role in enhancing the safety and security of millions of Ubuntu users globally. This position involves leading a team of security experts in addressing emerging threats, developing robust security measures, and maintaining the integrity of the Ubuntu platform. Your leadership will directly impact Canonical's mission to set the highest standards for software security, ensuring compliance with essential security requirements such as FIPS, CIS, STIG, FedRAMP, and the new CRA.
You will be responsible for defining security standards for open-source software across the Ubuntu platform, which includes desktops, servers, edge devices, cloud infrastructure, Kubernetes, and OpenStack. Additionally, you will collaborate with industry partners to certify core components that meet industry standards and guide development teams on security best practices.
Key Responsibilities:
- Lead and develop a team of engineers from graduate to senior level.
- Coach, mentor, and provide career development feedback.
- Identify and measure team health indicators while implementing disciplined engineering processes.
- Represent your team and product to stakeholders, partners, and customers.
- Develop and promote great engineering and organizational practices.
- Manage progress on agreed goals and projects.
- Support product and customer compliance with strict security requirements.
Qualifications:
- Exceptional academic track record with an undergraduate degree in Computer Science or a related STEM field.
- Strong communication skills in English (verbal and written).
- Proven experience in developing engineering talent and fostering a culture of growth.
- Familiarity with FIPS/Common Criteria certified products and related standards.
- Background in working with DISA-STIG or CIS benchmarks and audit remediation tools.
- Knowledge of software and application security and agile development methodologies.
- Ability to travel twice a year for company events lasting up to two weeks.
Additional Information:
- Optional hands-on experience with Linux cryptography libraries (OpenSSL, GnuTLS) is valued.
- Canonical offers a distributed work environment, with team sprints occurring in person twice a year, a personal learning and development budget, annual compensation reviews, and various employee benefits.
Language Requirements:
- Proficiency in English is required.
