Engineering Manager - Security Standards and Hardening

Overview

Engineering Manager - Security Standards and Hardening

As the most widely used Linux distribution, Ubuntu underpins the security of the entire internet. The role of Security Engineering Manager directly impacts the safety and security of millions of users worldwide. Join a team of security experts dedicated to protecting the open-source ecosystem and driving innovation. Your leadership will be instrumental in addressing emerging threats, developing robust security measures, and ensuring the continued integrity of Ubuntu.

Canonical’s mission is to deliver the world’s best open source platform, setting high standards for software security across the Ubuntu ecosystem.

This role focuses on leading the charge to set security standards for open source software across the Ubuntu platform, from desktops, servers and edge devices to cloud infrastructure, Kubernetes and Open Stack, by certifying core components to meet industry standards and guiding development teams in security best practices. The work involves cryptographic modules (FIPS 140) and system hardening, collaborating with partners such as CIS and DISA to define secure deployments.

• Lead and develop a team of engineers, ranging from graduate to senior
• Coach, mentor, and offer career development feedback
• Identify and measure team health indicators
• Implement disciplined engineering processes
• Represent your team and product to stakeholders, partners, and customers
• Develop and evangelise great engineering and organisational practices
• Plan and manage progress on agreed goals and projects
• Support products and customers to meet security requirements such as FIPS, CIS, STIG, FedRAMP and CRA
• Address cryptography modules (FIPS 140) and system hardening efforts with industry partners, including CIS and DISA

• An exceptional academic track record from high school and university
• Undergraduate degree in Computer Science or STEM, or a compelling alternative path
• Drive and a track record of going above-and-beyond
• Excellent verbal and written English communication skills
• A love of developing people and a track record of it
• Organised and able to ensure timely, high-quality results
• Professional manner interacting with colleagues, partners, and community
• Experience with FIPS/Common Criteria certified products and knowledge of the underlying standards
• Experience with DISA-STIG or CIS benchmarks and related audit/remediation tooling (Compliance as Code)
• Knowledgeable and passionate about software and application security
• Experience working in an agile development environment
• Demonstrated drive for continual learning
• Ability to travel twice a year for company events (up to two weeks each)

• Hands-on domain knowledge of Linux cryptography libraries (OpenSSL, GnuTLS)

We consider geographical location, experience, and performance in shaping compensation worldwide. In addition to base pay, we offer a performance-driven annual bonus and additional benefits that reflect our values. Compensation is revisited annually and more often for graduates and associates.

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass and travel upgrades for long-haul company events

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, we set high standards for people joining the company. Canonical has been remote-first since 2004. We are equal opportunity employers and foster a workplace free from discrimination, welcoming diverse backgrounds and experiences.

• Mid-Senior level

• Full-time

• Engineering and Information Technology

• Software Development