About the Job: This role is for security-focused engineers across all levels at Canonical, aimed at those who are exceptional in their field. Canonical's product engineering teams typically include one or two dedicated security-oriented software engineers whose primary focus is to enhance security through advanced practices. These engineers engage in activities such as table-top threat modeling, architecture reviews, security testing with fuzzers and static analysis tools, and collaboration with external security analysts.
Canonical builds products that are primarily motivated by security technology, such as AppArmor kernel investments and security compliance toolkits for Ubuntu. As the publisher of Ubuntu, we manage long-term security responses and enhancements for the operating system and the open-source ecosystem. As such, familiarity with various major programming languages is essential, alongside sophisticated tools that facilitate scalable and speedy task execution.
Key Responsibilities:
- Define, implement, and document new security features
- Lead security-oriented methodologies in product engineering teams
- Analyze and rectify vulnerabilities in Canonical and open-source software
- Contribute to community benefit through Ubuntu and upstream projects
- Audit and analyze source code for vulnerabilities
- Integrate new tools into our security pipelines and processes
- Maintain compliance with various security certifications
- Enhance Linux cryptographic components for country-specific compliance
- Collaborate with external partners to develop CIS benchmarks
- Design and develop hardening automation for Ubuntu
- Monitor industry developments in security
- Develop, test, and maintain new software capabilities
- Offer guidance to other engineering teams
What We Are Looking For:
- Strong academic background in Computer Science or a related STEM field
- Drive with a proven record of exceeding expectations
- Deep understanding of common security vulnerabilities and modern resolution techniques
- Proficiency in one or more programming languages such as C, Python, Go, Rust, Java, Ruby, or PHP
- Experience as a security champion within an SDLC process
- Professional proficiency in written and spoken English
- Familiarity with Linux (preferably Debian or Ubuntu)
- Excellent interpersonal, communication, and presentation skills
Work Conditions:
- Remote work environment with travel to company events twice a year (up to two weeks)
- Optional skills valued: Linux Kernel security experience, knowledge of FIPS/CC, experience with OVAL, and performance engineering
Language Requirements:
- Professional proficiency in written and spoken English
What We Offer:
- Competitive compensation with annual reviews and performance-driven bonuses
- Personal learning and development budget of USD 2,000 per year
- Annual holiday leave, maternity and paternity leave
- Employee Assistance Programme
- Opportunities for travel to new locations for company events
About Canonical:
Canonical is a leading tech company advancing the global shift to open source. As the publisher of Ubuntu, we are creating significant changes in the tech landscape daily. Our commitment to a remote-first culture since 2004 offers employees unique opportunities for growth and engagement in the tech community. We are an equal opportunity employer, dedicated to fostering a diverse and inclusive workplace.
