Security Software Engineer

About the Job:
This role is part of a general track for security-focused engineering across all teams at Canonical, suitable for exceptional security-focused software engineers at any seniority level. Security-oriented software engineers within product teams are responsible for enhancing the team's security mindset and practices. They contribute to the product as engineers while primarily focusing on improving security through advanced methodologies such as threat modeling, architecture reviews, and extensive security testing with tools like fuzzers and static analysis.

Canonical also develops security-driven products, including AppArmor kernel investments and various compliance and certification toolkits for Ubuntu. As the publisher of Ubuntu, the company manages long-term security responses and hardening for the operating system and broader open-source ecosystem, engaging with numerous upstream projects.

Key Responsibilities:

• Define, implement, and document new security features.
• Lead security-focused initiatives within a product engineering team.
• Analyze, fix, and test vulnerabilities in Canonical and open-source software.
• Contribute to Ubuntu and upstream projects.
• Audit and analyze source code for vulnerabilities.
• Integrate new tools into security infrastructure and processes.
• Achieve and maintain relevant security certifications.
• Enhance Linux cryptographic components for compliance.
• Collaborate with external partners to develop security benchmarks.
• Monitor industry trends and developments in security.

Requirements:

• Exceptional academic track record (high school and university).
• Undergraduate degree in Computer Science or STEM, or equivalent experience.
• Strong understanding of common security vulnerabilities and modern techniques for mitigation.
• Proficiency in one or more programming languages such as C, Python, Go, Rust, Java, Ruby, or PHP.
• Experience as a security champion and in driving security initiatives within a software development lifecycle (SDLC).
• Proficient in professional written and spoken English.
• Experience with Linux (Debian or Ubuntu preferred) and excellent interpersonal skills.

Optional Skills:

• Familiarity with Linux Kernel Security and FIPS/CC certification.
• Knowledge of OVAL (Open Vulnerability Assessment Language) and low-level Linux cryptography APIs.

What We Offer:

• Competitive compensation with annual reviews.
• Performance-driven annual bonus.
• Benefits reflecting our values, including a distributed work environment and personal learning budget.
• Annual holiday leave, maternity and paternity leave, and employee assistance programs.
• Opportunities for travel to meet colleagues and participation in team events.

About Canonical:
Canonical is a leader in the transition to open source, publishing Ubuntu, a key platform for AI, IoT, and cloud technologies. The company maintains a remote-first work culture, encouraging innovative thinking and continuous learning. Canonical is committed to diversity and fostering an inclusive work environment.