Canonical
Engineering Manager - Security Standards and Hardening
Canonical, San Jose, California, United States, 95199
Engineering Manager - Security Standards and Hardening
Canonical is hiring an Engineering Manager to lead Security Standards and Hardening across the Ubuntu platform. This role focuses on setting security standards, guiding development teams, and ensuring secure deployments from desktops to cloud infrastructure. You will collaborate on cryptographic modules (FIPS 140) and system hardening with industry partners including CIS and DISA to meet industry standards such as FIPS, CIS, STIG, FedRAMP and the CRA.
As the Security Engineering Manager, you will lead the charge to set the security standards for open source software across the Ubuntu platform, from desktops, servers and edge devices to cloud infrastructure, Kubernetes and OpenStack, by certifying core components to meet industry standards and guiding development teams across the company in security best practices. We work primarily within the areas of cryptographic modules (FIPS 140) and system hardening, where we collaborate with industry partners including CIS and DISA to define and build secure operating system deployments.
An Engineering Manager is responsible for line management and career guidance. The ability to develop engineering talent, to represent your team and product from a technical perspective, and to drive collaboration with other teams and customers are all critical to success in this role.
What you will do in this role
Lead and develop a team of engineers, ranging from graduate to senior
Coach, mentor, and offer career development feedback
Identify and measure team health indicators
Implement disciplined engineering processes
Represent your team and product to stakeholders, partners, and customers
Develop and evangelise great engineering and organisational practices
Plan and manage progress on agreed goals and projects
Support our products and customers to meet strict product security requirements such as FIPS, CIS, STIG, FedRAMP and the CRA
Support work addressing cryptography modules (FIPS 140) and system hardening efforts with industry partners, including CIS and DISA
What we are looking for in you
An exceptional academic track record from both high school and university
Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
Drive and a track record of going above and beyond expectations
Excellent verbal and written communication skills in English
A love of developing and growing people and a track record of it
Organised and able to ensure your team delivers timely, high quality results
Professional manner interacting with colleagues, partners, and community
Prior experience working on FIPS/Common Criteria certified products and in-depth knowledge of the underlying standards
Prior experience working directly with DISA-STIG or CIS benchmarks, including related audit and remediation tooling (e.g., Compliance as Code)
Knowledgeable and passionate about software and application security
Solid experience working in an agile development environment
A demonstrated drive for continual learning
Builds trust, relationships and confidence
Result-oriented, with a personal drive to meet commitments
Ability to travel twice a year for company events up to two weeks each
Optional things we value
Hands-on domain knowledge of Linux cryptography libraries (OpenSSL, GnuTLS)
What we offer you We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.
Distributed work environment with twice-yearly team sprints in person
Personal learning and development budget of USD 2,000 per year
Annual compensation review
Recognition rewards
Annual holiday leave
Maternity and paternity leave
Employee Assistance Programme
Opportunity to travel to new locations to meet colleagues
Priority Pass, and travel upgrades for long haul company events
About Canonical Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.
Canonical is an equal opportunity employer. We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Engineering and Information Technology
Industries
Software Development
#J-18808-Ljbffr
As the Security Engineering Manager, you will lead the charge to set the security standards for open source software across the Ubuntu platform, from desktops, servers and edge devices to cloud infrastructure, Kubernetes and OpenStack, by certifying core components to meet industry standards and guiding development teams across the company in security best practices. We work primarily within the areas of cryptographic modules (FIPS 140) and system hardening, where we collaborate with industry partners including CIS and DISA to define and build secure operating system deployments.
An Engineering Manager is responsible for line management and career guidance. The ability to develop engineering talent, to represent your team and product from a technical perspective, and to drive collaboration with other teams and customers are all critical to success in this role.
What you will do in this role
Lead and develop a team of engineers, ranging from graduate to senior
Coach, mentor, and offer career development feedback
Identify and measure team health indicators
Implement disciplined engineering processes
Represent your team and product to stakeholders, partners, and customers
Develop and evangelise great engineering and organisational practices
Plan and manage progress on agreed goals and projects
Support our products and customers to meet strict product security requirements such as FIPS, CIS, STIG, FedRAMP and the CRA
Support work addressing cryptography modules (FIPS 140) and system hardening efforts with industry partners, including CIS and DISA
What we are looking for in you
An exceptional academic track record from both high school and university
Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
Drive and a track record of going above and beyond expectations
Excellent verbal and written communication skills in English
A love of developing and growing people and a track record of it
Organised and able to ensure your team delivers timely, high quality results
Professional manner interacting with colleagues, partners, and community
Prior experience working on FIPS/Common Criteria certified products and in-depth knowledge of the underlying standards
Prior experience working directly with DISA-STIG or CIS benchmarks, including related audit and remediation tooling (e.g., Compliance as Code)
Knowledgeable and passionate about software and application security
Solid experience working in an agile development environment
A demonstrated drive for continual learning
Builds trust, relationships and confidence
Result-oriented, with a personal drive to meet commitments
Ability to travel twice a year for company events up to two weeks each
Optional things we value
Hands-on domain knowledge of Linux cryptography libraries (OpenSSL, GnuTLS)
What we offer you We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.
Distributed work environment with twice-yearly team sprints in person
Personal learning and development budget of USD 2,000 per year
Annual compensation review
Recognition rewards
Annual holiday leave
Maternity and paternity leave
Employee Assistance Programme
Opportunity to travel to new locations to meet colleagues
Priority Pass, and travel upgrades for long haul company events
About Canonical Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.
Canonical is an equal opportunity employer. We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Engineering and Information Technology
Industries
Software Development
#J-18808-Ljbffr