Security Software Engineer

About the Job: This is a general track for security-focused engineering at Canonical, applicable across all levels of seniority. Ideal candidates are exceptional security-focused software engineers. Most product engineering teams at Canonical include one or two dedicated security-oriented software engineers whose primary focus is to improve security through state-of-the-art practices. Responsibilities include:

• Defining, implementing, and documenting new security features.
• Leading security-oriented thinking within product engineering teams.
• Analyzing, fixing, and testing vulnerabilities in Canonical and open-source software.
• Contributing to Ubuntu and upstream projects.
• Auditing and analyzing source code for vulnerabilities.
• Integrating new tools into security infrastructure and processes.
• Achieving and retaining various security certifications.
• Extending and enhancing Linux cryptographic components.
• Collaborating with external partners to develop CIS benchmarks.
• Designing and developing hardening automation for Ubuntu.
• Monitoring the security industry for new developments.
• Providing guidance and support to other engineering teams.

What We Are Looking For:

• Exceptional academic track record with an undergraduate degree in Computer Science or related STEM fields.
• A clear understanding of common security vulnerabilities and modern engineering techniques to address them.
• Familiarity with open-source development tools and methodologies.
• Proficiency in one or more of the following languages: C, Python, Go, Rust, Java, Ruby, or PHP.
• Experience as a security champion and in driving security within the SDLC process.
• Professional written and spoken English is required.
• Experience with Linux (preferably Debian or Ubuntu).
• Excellent interpersonal skills, curiosity, flexibility, and accountability.
• Strong communication and presentation skills.

Optional Skills We Value:

• Experience working with Linux Kernel Security.
• Certification experience and knowledge in FIPS and/or CC.
• Familiarity with OVAL (Open Vulnerability Assessment Language).
• Knowledge of low-level Linux cryptography APIs.
• Demonstrated ability for high learning and performance engineering experience.

What We Offer You:

• Competitive compensation influenced by geographical location, experience, and performance, with an annual review.
• Performance-driven annual bonus.
• Additional benefits including a distributed work environment with twice-yearly team sprints, a personal learning and development budget of USD 2,000 per year, annual holiday leave, maternity and paternity leave, and an Employee Assistance Programme.
• Opportunities for travel to new locations to meet colleagues.

Canonical is a pioneering tech firm at the forefront of the global move to open source, publishing Ubuntu—a key open-source platform for AI, IoT, and the cloud. As a remote-first company since 2004, we set high standards for our team and are committed to creating a diverse and inclusive work environment.