Canonical
Overview Security Software Engineer at Canonical. Canonical is a leading provider of open source software and operating systems with a remote-first culture and global teams. This role focuses on security across product teams, including threat modeling, design reviews, static analysis, fuzzing, and security-focused development within open source software and the Ubuntu ecosystem.
Location: Worldwide, this is a globally remote role. The role requires productive work in a globally distributed team and international travel at least twice a year.
Canonical emphasizes security across all product engineering work, long-term security for the Ubuntu operating system, and collaboration with upstreams and the open source community.
Apply if you are a security-focused software engineer who is passionate about open source and Canonical's mission.
Seniority: Entry level. Employment type: Full-time.
About Canonical: Canonical publishes Ubuntu and supports a global, remote-first workforce. Canonical is an equal opportunity employer and celebrates diversity of experience, perspectives, and background.
What you'll do Define, implement, and document new security features
Lead security-focused initiatives within a product engineering team
Analyze, fix, and test vulnerabilities in open source software
Contribute to Ubuntu and upstream open source projects
Audit and analyze source code for vulnerabilities
Integrate new tools into security infrastructure, pipelines, and processes
Achieve and retain various security certifications
Extend and enhance Linux cryptographic components for country-specific compliance (e.g., FIPS, Common Criteria)
Work with external partners to develop CIS benchmarks
Design and develop hardening automation for Ubuntu
Stay updated with trends in the security industry
Develop, test, and maintain new software capabilities
Provide guidance and support to other engineering teams on security best practices
What we are looking for in you An exceptional academic track record from high school and university or a compelling alternative path
Undergraduate degree in Computer Science or STEM, or equivalent experience
Proven track record of going above and beyond expectations
Solid understanding of common security vulnerabilities and how to fix them
Knowledge of modern software engineering techniques
Familiarity with open source development tools and methodologies
Proficiency in one or more of C, C++, Python, Go, Rust, Java, Ruby, PHP, or JavaScript/Typescript
Experience as a security champion and driving security within a wider SSDLC process
Professional written and spoken English
Experience with Linux (Debian or Ubuntu preferred)
Excellent interpersonal skills, curiosity, flexibility, accountability
Passion, thoughtfulness, self-motivation
Excellent communication and presentation skills
Results-oriented with a strong drive to meet commitments
Optional skills we also value Clear and effective communication with the team and Ubuntu community
Experience working with the Linux kernel
Experience with security certifications and knowledge of FIPS/CC
Experience with OVAL (Open Vulnerability Assessment Language)
Knowledge of cryptographic modules such as OpenSSL and Libgcrypt
Knowledge of low-level Linux cryptography APIs
Demonstrated ability to learn quickly
Performance engineering experience
What we offer you Distributed work environment with twice-yearly team sprints in person
Personal learning and development budget of USD 2,000 per year
Annual compensation review
Recognition rewards
Annual holiday leave
Maternity and paternity leave
Employee Assistance Programme
Opportunity to travel to new locations to meet colleagues
Travel upgrades for long-haul company events
About Canonical Canonical is a pioneering tech firm at the forefront of the global move to open source. As the publisher of Ubuntu, we operate globally with a remote-first culture since 2004. We recruit on a global basis and emphasize excellence.
Canonical is an equal opportunity employer. We are committed to a workplace free from discrimination and will consider every applicant fairly.
#J-18808-Ljbffr