Security Software Engineer

Social network you want to login/join with:

This is a general track for security-focused engineering in every team at Canonical, across all levels of seniority. Apply here if you are already an exceptional security-focused software engineer.

Most product engineering teams at Canonical include dedicated security-oriented software engineers. Their role is to challenge the team to think more deeply about security. They contribute as engineers but primarily focus on improving security through practices like threat modeling, architecture reviews, security testing with fuzzers and static analysis tools, and liaising with external security analysts.

We develop products motivated by security technology, such as AppArmor kernel investments and tools for hardening, compliance, and certification for Ubuntu.

As the publisher of Ubuntu, we handle long-term security response and hardening for the OS and open source projects, working with upstreams in multiple programming languages and developing tools for scalable, confident work.

These roles cover all aspects of product security, including feature development, vulnerability response, proactive security, and open source community participation. Security team members collaborate closely with other engineering teams, customers, and partners.

Location: We have open roles for security specialist software engineers in every timezone.

What you'll do

Security roles may involve:

• Defining, implementing, and documenting security features
• Leading security-focused thinking within teams
• Analyzing, fixing, and testing vulnerabilities
• Contributing to Ubuntu and upstream projects
• Auditing source code for vulnerabilities
• Integrating security tools and processes
• Achieving and maintaining security certifications
• Enhancing cryptographic components for compliance (e.g., FIPS, CC)
• Working with partners on CIS benchmarks
• Designing hardening automation for Ubuntu
• Monitoring industry developments
• Developing and maintaining security software
• Supporting other engineering teams

What we are looking for in you

• Strong academic record from high school and university or an alternative demonstrated path
• Degree in Computer Science/STEM or equivalent experience
• Drive and a history of exceeding expectations
• Understanding of common security vulnerabilities
• Modern techniques to find and fix vulnerabilities
• Experience with open source development tools
• Skills in C, Python, Go, Rust, Java, Ruby, or PHP
• Experience as a security champion and integrating security into SDLC
• Proficiency in English
• Experience with Linux (Debian or Ubuntu)
• Interpersonal skills, curiosity, flexibility, accountability
• Passion, thoughtfulness, self-motivation
• Excellent communication and presentation skills
• Result-oriented with a commitment to deadlines
• Ability to travel twice a year for up to two weeks

Optional skills we also value

• Effective communication with teams and the Ubuntu community
• Experience with Linux Kernel
• Security certifications and knowledge of FIPS/CC
• Experience with OVAL
• Familiarity with Linux cryptography APIs
• High learning ability and performance engineering experience

What we offer you

We consider location, experience, and performance in compensation, revisited regularly. Benefits include a USD 2,000 annual learning budget, performance bonuses, and various leave and support programs. We promote a distributed work environment with in-person team sprints twice a year, and opportunities for travel and professional development.