Engineering Manager - Security Standards and Hardening

As the most widely used Linux distribution, Ubuntu underpins the security of the entire internet. The role of Security Engineering Manager directly impacts the safety and security of millions of users worldwide. Join a team of security experts dedicated to protecting the open-source ecosystem and driving innovation. Your leadership will be instrumental in addressing emerging threats, developing robust security measures, and ensuring the continued integrity of Ubuntu. This is an opportunity to make a tangible difference and leave a lasting legacy on the digital landscape.

Canonical's mission to deliver the world's best open source platform comes with a responsibility to set the highest possible standard for software security, not only for the operating system but also for the wide range of open source infrastructure and software that developers enjoy within the Ubuntu ecosystem. Your role will involve leading the charge to set security standards across the Ubuntu platform, from desktops and servers to cloud infrastructure.

Key Responsibilities:

• Lead and develop a team of engineers, ranging from graduate to senior levels.
• Coach, mentor, and offer career development feedback.
• Identify and measure team health indicators.
• Implement disciplined engineering processes.
• Represent your team and product to stakeholders, partners, and customers.
• Develop and evangelize great engineering and organizational practices.
• Plan and manage progress on agreed goals and projects.
• Support products and customers to meet strict product security requirements such as FIPS, CIS, STIG, and FedRAMP.
• Collaborate with industry partners on cryptography modules (FIPS 140) and system hardening efforts.

Requirements:

• Exceptional academic track record from both high school and university.
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about an alternative path.
• Excellent verbal and written communication skills in English.
• Passion for developing and growing people.
• Experience with FIPS/Common Criteria certified products and knowledge of underlying standards.
• Familiarity with DISA-STIG or CIS benchmarks, including related audit and remediation tooling (e.g., Compliance as Code).
• Knowledgeable in software and application security.
• Experience in an agile development environment.
• Willingness to travel twice a year for company events, up to two weeks each.

Optional Qualifications:

• Hands-on domain knowledge of Linux cryptography libraries (OpenSSL, GnuTLS).

Work Conditions:

• Remote work environment with twice-yearly team sprints in person.
• Personal learning and development budget of USD 2,000 per year.
• Annual compensation review and performance-driven annual bonus.
• Additional benefits reflecting the company's values, including holiday leave, maternity/paternity leave, and an Employee Assistance Programme.
• Opportunity to travel for company events and a Priority Pass for travel upgrades.

Equal Opportunity Employer: Canonical is proud to foster a workplace free from discrimination, ensuring fair consideration for all applicants regardless of identity.