Engineering Manager - Security Standards and Hardening

As the most widely used Linux distribution, Ubuntu underpins the security of the entire internet. The role of Security Engineering Manager directly impacts the safety and security of millions of users worldwide. Join a team of security experts dedicated to protecting the open-source ecosystem and driving innovation. Your leadership will be instrumental in addressing emerging threats, developing robust security measures, and ensuring the continued integrity of Ubuntu.

This role involves leading the charge to set the security standards for open-source software across the Ubuntu platform, from desktops, servers, and edge devices to cloud infrastructure, Kubernetes, and OpenStack. You will certify core components to meet industry standards and guide development teams across the company in security best practices. Key areas of focus include cryptographic modules (FIPS 140) and system hardening, collaborating with industry partners like CIS and DISA to define and build secure operating system deployments.

Responsibilities:

• Lead and develop a team of engineers, ranging from graduate to senior level.
• Coach, mentor, and offer career development feedback.
• Identify and measure team health indicators.
• Implement disciplined engineering processes.
• Represent your team and product to stakeholders, partners, and customers.
• Develop and evangelise great engineering and organisational practices.
• Plan and manage progress on agreed goals and projects.
• Support products and customers to meet strict product security requirements such as FIPS, CIS, STIG, FedRAMP, and the new CRA.

What We Are Looking for In You:

• An exceptional academic track record from both high school and university.
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about an alternative path.
• Drive, and a track record of going above-and-beyond expectations.
• Excellent verbal and written communication skills in English.
• A love of developing and growing people and a track record of it.
• Organised and able to ensure your team delivers timely, high-quality results.
• Professional manner interacting with colleagues, partners, and the community.
• Prior experience working on FIPS/Common Criteria certified products and in-depth knowledge of the underlying standards.
• Knowledgeable and passionate about software and application security.
• Solid experience working in an agile development environment.
• A demonstrated drive for continual learning.
• Ability to travel twice a year for company events up to two weeks each.

Optional Things We Value:

• Hands-on domain knowledge of Linux cryptography libraries (OpenSSL, GnuTLS).

Compensation and Benefits:
We consider geographical location, experience, and performance in shaping compensation worldwide. In addition to base pay, we offer a performance-driven annual bonus, a personal learning and development budget of USD 2,000 per year, annual compensation reviews, recognition rewards, and various leave options (including maternity and paternity leave). We also foster a remote work environment with twice-yearly team sprints in person and provide additional benefits that reflect our values and ideals.

About Canonical:
Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, we are committed to excellence and fostering a diverse workplace free from discrimination.