About the Job: This role is focused on security-oriented engineering across all levels at Canonical. As a Security Software Engineer, you will work within product engineering teams to enhance security practices through initiatives like threat modeling, architecture reviews, and security testing. You will contribute to both the product and security improvements through robust engineering practices.
Security roles may involve tasks such as:
- Defining, implementing, and documenting new security features
- Leading security-oriented discussions within a product engineering team
- Analyzing, fixing, and testing vulnerabilities in Canonical and open source software
- Contributing to Ubuntu and upstream projects for community benefit
- Auditing and analyzing source code for vulnerabilities
- Integrating new tools into security infrastructure, pipelines, and processes
- Developing hardening automation for Ubuntu
- Monitoring the security industry for developments
- Providing guidance and support to other engineering teams
Requirements:
- Exceptional academic track record in Computer Science or a STEM field, or a compelling alternative narrative
- Drive and proven track record of exceeding expectations
- Strong understanding of common security vulnerabilities and modern engineering techniques to address them
- Familiarity with open-source development tools and methodologies
- Proficiency in one or more programming languages such as C, Python, Go, Rust, Java, Ruby, or PHP
- Experience as a security champion and driving security within a wider Software Development Life Cycle (SDLC) process
- Professional written and spoken English is required
- Experience with Linux (Debian or Ubuntu preferred)
- Excellent interpersonal skills, curiosity, and flexibility
Optional Skills:
- Clear communication with team members and the Ubuntu community
- Experience with Linux Kernel Security
- Knowledge of FIPS and CC certification
- Familiarity with OVAL (Open Vulnerability Assessment Language)
- Understanding of low-level Linux cryptography APIs
Compensation and Benefits:
Canonical offers compensation based on geographic location, experience, and performance, with an annual review. Benefits include:
- Personal learning and development budget of USD 2,000 per year
- Annual performance-driven bonus
- Distributed work environment with semi-annual in-person team sprints
- Maternity and paternity leave
- Employee Assistance Programme
- Opportunity for travel to meet colleagues
Canonical is dedicated to diversity and promotes a fair opportunity workplace for all applicants.
