About the Job:
This position offers a unique opportunity to leverage your software engineering and cryptography skills in building and maintaining the security foundation for Ubuntu, ensuring compliance with international information security standards such as FIPS 140-3 and Common Criteria. You will apply your expertise in applied cryptography, Linux security, and development to enhance the Ubuntu distribution while collaborating with organizations like DISA and CIS to implement security hardening benchmarks.
As a member of the Security Hardening team, your responsibilities will include developing automation tooling to audit systems for compliance with DISA-STIG and CIS benchmarks, identifying framework gaps, and creating innovative solutions. You will influence team and security culture, foster technical delivery, and work closely with Canonical’s kernel team and broader engineering organization.
Day-to-Day Responsibilities:
- Collaborate with engineers in the Security Hardening team to achieve and maintain security certifications.
- Extend and enhance Linux cryptographic components (e.g., OpenSSL, Libgcrypt, GnuTLS) for FIPS and CC certification.
- Work with external security consultants for testing and validation.
- Develop security hardening benchmarks and automation for Ubuntu.
- Contribute to upstream projects and improve security posture through collaboration.
Qualifications:
- Hands-on experience with low-level Linux cryptography APIs.
- Strong software engineering fundamentals and C development experience.
- Linux system administration and shell scripting expertise.
- Knowledge of security and cryptography fundamentals along with secure coding practices.
- Significant development experience with open source libraries.
- Excellent verbal and written communication skills to facilitate collaboration in a remote environment.
Additional Skills That May Be Beneficial:
- Experience with FIPS/Common Criteria certified products and related standards.
- Familiarity with DISA-STIG or CIS benchmarks, including audit and remediation tooling.
- Direct experience with the Linux Kernel.
- Proficiency in Python, OVAL, and Ansible.
- History of contributions to open source projects.
What We Offer:
- Competitive compensation based on experience and performance.
- Annual compensation reviews and performance-driven bonuses.
- Distributed work environment with in-person team sprints twice a year.
- Personal learning and development budget of USD 2,000 per year.
- Annual holiday leave, maternity and paternity leave, and employee assistance programs.
- Opportunities for travel to meet colleagues from different teams.
Location: Jiddah, Makkah, Saudi Arabia (Remote)
Work Conditions: Full-time, Remote
Company Overview:
Canonical is a pioneering technology firm at the forefront of the global move to open source, known for publishing Ubuntu, a leading open source platform. Committed to excellence and innovation, Canonical operates as a remote-first company, ensuring that skills are prioritized over location. Canonical fosters a diverse workplace and is dedicated to fair consideration of all applicants.
