Ubuntu Security Engineer

Canonical is a leading provider of open source software and operating systems to the global enterprise and technology markets. Our platform, Ubuntu, is widely used in breakthrough enterprise initiatives such as public cloud, data science, AI, engineering innovation, and IoT.

Our customers include the world's leading public cloud and silicon providers, and industry leaders in many sectors. Canonical pioneers global distributed collaboration, with colleagues in 75+ countries and very few office‑based roles. Teams meet two to four times yearly in person, in interesting locations around the world, to align on strategy and execution. The company is founder‑led, profitable, and growing.

Canonical is building a team dedicated to providing security coverage across a wide range of ecosystems and environments, working to make the world a better, safer place. A global, remote role, the Ubuntu Security Engineer helps protect the open source community and Ubuntu users from emerging threats. The role requires international travel at least twice a year, usually for one week, and the ability to be productive in a globally distributed team through self‑discipline and self‑motivation.

• Analyzing, fixing, and testing vulnerabilities in open source packages
• Keeping track of vulnerabilities in the Ubuntu ecosystem as they are discovered, researched, and fixed, leveraging internal tools
• Collaborating with other teams in the Ubuntu community and upstream developers, as needed, to exchange or develop vulnerability patches and ensure that Ubuntu includes the most robust security features
• Auditing source code for vulnerabilities
• Building features and tools to help teams strengthen the security of their products and contribute to the overall security of Ubuntu

• You have a thorough understanding of the common categories of security vulnerabilities and techniques for fixing them
• You are familiar with coordinated disclosure practices
• You are familiar with open source development tools and methodologies
• You are skilled in one or more of C, Python, Go, Rust, Java, Ruby, PHP, or JavaScript / TypeScript
• You have excellent logic, problem‑solving, troubleshooting, and decision‑making skills
• You can clearly and effectively communicate with the team and Ubuntu community members
• Experience with Linux (Debian or Ubuntu preferred)
• Excellent interpersonal skills, curiosity, flexibility, and accountability
• Appreciative of diversity, polite, and effective in a multi‑cultural, multi‑national organization
• Thoughtfulness and self‑motivation
• Result‑oriented, with a personal drive to meet commitments

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognize outstanding performance. In addition to base pay, we offer a performance‑driven annual bonus or commission. We provide all team members with additional benefits which reflect our values and ideals, balancing programs to meet local needs and ensuring fairness globally. The distributed work environment includes twice‑yearly team sprints in person, a personal learning and development budget of USD 2,000 per year, annual compensation review, recognition rewards, annual holiday leave, maternity and paternity leave, a Team Member Assistance Program & Wellness Platform, opportunities to travel to new locations to meet colleagues, and Priority Pass plus travel upgrades for long‑haul company events.

Canonical is an equal‑opportunity employer. We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.