This position is a general track for security-focused engineering across all teams at Canonical, available for individuals at any seniority level. As a Security Software Engineer, you will be part of product engineering teams, contributing to both engineering tasks and a primary focus on improving security practices. Your responsibilities will include:
- Defining, implementing, and documenting new security features
- Leading security-oriented discussions within product engineering teams
- Analyzing, fixing, and testing vulnerabilities in Canonical and open-source software
- Contributing to Ubuntu and upstream projects for community benefits
- Auditing source code for vulnerabilities
- Integrating new tools into security infrastructure and processes
- Achieving and maintaining various security certifications
- Extending and enhancing Linux cryptographic components
- Collaborating with external partners on developing CIS benchmarks
- Designing hardening automation for Ubuntu
- Monitoring security industry developments
- Developing and maintaining new software capabilities
- Providing guidance and support to other engineering teams
What We Are Looking For:
- Exceptional academic record, preferably with a degree in Computer Science or STEM
- Drive and a history of exceeding expectations
- Thorough understanding of security vulnerabilities and contemporary engineering techniques to address them
- Familiarity with open-source development tools
- Proficiency in one or more programming languages: C, Python, Go, Rust, Java, Ruby, or PHP
- Experience acting as a security champion within the software development life cycle (SDLC)
- Professional written and spoken English
- Experience with Linux (Debian or Ubuntu preferred)
- Strong interpersonal skills, curiosity, flexibility, and accountability
- Excellent communication and presentation abilities
- Result-oriented mindset with a commitment to meeting objectives
- Ability to travel twice a year for company events (up to two weeks each)
Optional Skills Valued:
- Clear communication with team and community members
- Experience with Linux Kernel Security
- Certification knowledge in FIPS and/or CC
- Familiarity with OVAL (Open Vulnerability Assessment Language)
- Knowledge of low-level Linux cryptography APIs
- Performance engineering experience
What We Offer:
- Competitive compensation shaped by location, experience, and performance
- Annual compensation reviews
- Performance-driven annual bonuses
- Personal learning and development budget of USD 2,000 per year
- Recognition rewards
- Comprehensive benefits including annual holiday leave and parental leave
- Employee Assistance Programme
- Opportunities to travel for team events
About Canonical:
Canonical is a pioneering tech firm leading the global shift to open-source technology. As the publisher of Ubuntu, we are integral to important projects driving innovations in AI, IoT, and cloud computing. We maintain a remote-first work culture and commit to fostering an inclusive workplace free from discrimination, welcoming diverse perspectives to enhance our environment and products.
