About the Job:
This global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for the design, implementation, and evolution of Canonical's security practices, techniques, tools, systems, and policies. The team is the primary owner of strategies and practices that determine how Canonical secures its data, internal infrastructure, and build processes. They are responsible for assuring the security and integrity of Canonical's infrastructure and product deployments, designing and implementing technical security controls to automatically identify, contain, and remediate security threats.
As a cyber security leader in the company, the SecOps team manager will collaborate with the Organizational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical. The role involves operating within a broader security organization, running a high-performing security team, and improving Canonical's security posture.
The manager will lead initiatives to integrate the team's insights into Canonical's software development process, contributing not only to Canonical's security but also to the wider open source ecosystem. They may share knowledge through public presentations, industry events, and contribute to threat intelligence initiatives.
Responsibilities:
- Hire and mentor a team of outstanding technical security professionals.
- Define Canonical's SecOps security standards and playbooks.
- Own and drive the architecture and design of the Security Operations Center (SOC).
- Analyze and improve Canonical's security architecture.
- Evaluate, select, and implement new security tools and practices.
- Identify, contain, and guide the remediation of security threats and cyber attacks.
- Contribute to open source threat intelligence initiatives.
- Develop Canonical SecOps learning and development materials.
- Publish blog posts, whitepapers, and conference presentations.
- Identify, implement, and track SecOps KPIs.
- Collaborate with Security leadership to present information and influence change.
Requirements:
- Proven track record of mitigating advanced threat actors and nation-state threats.
- Expert technical understanding of SOCs and their architecture including logging strategies, firewalls, network segmentation, etc.
- Expertise in Linux security.
- Ability to define, implement, automate, and measure effective incident response playbooks.
- Experience with security risk management frameworks such as NIST CSF.
- Exceptional academic background in Computer Science or STEM, or a compelling alternative narrative.
- Deep personal motivation in technology security, with leadership and management abilities.
- Excellent business English writing and presentation skills.
- Confidence to report security performance metrics accurately.
Optional Valued Experience:
- Experience in offensive or defensive security teams.
- Familiarity with open source security tools.
- Knowledge of security standards like ISO 27001.
- Experience in security posture management of corporate endpoints.
Language Requirements:
- Excellent business English communication skills.
Location:
Riyadh, Riyadh, Saudi Arabia (Remote)
Work Conditions:
Full-time, Remote
