About Canonical

Canonical, the company behind Ubuntu Linux, is the leading provider of enterprise open source software, services, and solutions. Ubuntu powers millions of servers, desktops, and cloud instances worldwide, forming the backbone of modern infrastructure from hyperscale clouds to edge devices. As a fully remote-first company, Canonical employs top talent globally to push the boundaries of open source innovation. Our security teams protect not just Canonical's infrastructure but contribute significantly to the resilience of the entire Ubuntu ecosystem and open source community.

Role Overview

The Head of Security Operations (SecOps) at Canonical is a global leadership position managing the team responsible for designing, implementing, and evolving Canonical's security practices, tools, and policies. Reporting directly to the Chief Information Security Officer (CISO), you will own the strategy for securing Canonical's data, internal infrastructure, build processes, and product deployments. This role demands hands-on expertise in Linux security, SOC architecture, and advanced threat mitigation, combined with strong leadership to build and mentor a high-performing team.

In this premium cybersecurity leadership role, you'll integrate security insights into Canonical's agile engineering practices, contribute to open source threat intelligence, and elevate Canonical's presence as a thought leader in technology security. With Ubuntu at the heart of cloud-native and edge computing, your work will directly impact the security posture of millions of users worldwide.

Key Responsibilities

Team Leadership and Development

• Hire and mentor outstanding technical security professionals to build a world-class SecOps team.
• Collaborate with Organizational Learning and Development to create playbooks and deliver SecOps training across Canonical.
• Drive threat modeling, tabletop exercises, and SecOps practices throughout Engineering, IS, and the company.

Security Architecture and Operations

• Own and drive the architecture and design of Canonical's Security Operations Center (SOC).
• Analyze and improve Canonical's overall security architecture, including logging, firewalls, network segmentation, and honeypots.
• Evaluate, select, and implement cutting-edge security tools and practices.
• Identify, contain, and guide remediation of security threats and cyber attacks.

Strategic Contributions

• Define Canonical's SecOps security standards, playbooks, and KPIs.
• Contribute to open source threat intelligence initiatives and share knowledge via blog posts, whitepapers, and conference presentations.
• Work with Security leadership to present metrics and influence organizational change.
• Plan and deliver SecOps work within Canonical's agile engineering framework.

Qualifications & Requirements

Canonical seeks proven leaders with deep technical expertise. Essential qualifications include:

• Proven track record of mitigating advanced threat actors and nation-state threats.
• Expert technical understanding of SOCs from the ground up, including architecture, design, and operational strategies.
• In-depth knowledge of Linux security and hands-on experience with open source and proprietary security tools.
• Ability to define, implement, automate, and measure effective incident response playbooks.
• Experience with security risk management frameworks like NIST CSF and consuming threat intelligence feeds.
• Undergraduate degree in Computer Science or STEM (or compelling alternative path) with an exceptional academic record.
• Strong leadership, excellent business English writing/presentation skills, and confidence in reporting security metrics.

Optional but valued: Experience in offensive/defensive security, ISO 27001, open source tools, and endpoint security posture management.

Benefits & Perks

Joining Canonical as Head of Security Operations offers unparalleled benefits in a remote-first environment:

• Global Remote Work: Home-based anywhere worldwide with flexible hours in a truly distributed team.
• Competitive Compensation: Top-tier salary for senior cybersecurity leadership, plus equity in a high-growth open source leader.
• Professional Impact: Shape Ubuntu's security for millions, contribute to open source, and represent Canonical at industry events.
• Learning & Development: Access to training, conferences, and resources to stay at the forefront of cybersecurity.
• Comprehensive Perks: Health benefits, retirement plans, generous PTO, and hardware budget for peak productivity.

Career Growth

This role positions you for executive impact within Canonical's security organization and beyond. As a key leader under the CISO, you'll influence company-wide security strategy, mentor future leaders, and drive innovations that resonate across the open source ecosystem. Canonical's remote-first culture fosters rapid career progression based on merit, with opportunities to lead larger teams, spearhead product security initiatives, or transition into broader executive roles.

Why Join Canonical

Canonical is where open source security meets global scale. Ubuntu secures the world's most demanding environments—from AWS and Azure to IoT and supercomputers. Our remote-first culture eliminates geographic barriers, uniting 1000+ experts in a collaborative, high-trust environment. You'll work on mission-critical security for Ubuntu, contribute to public good through threat intelligence sharing, and build thought leadership that advances the industry. If you're driven by deep motivation for technology security and a track record of exceeding expectations, this is your opportunity to lead SecOps at the forefront of open source innovation.

Role FAQs

Is this role fully remote?

Yes, this is a home-based role available worldwide, embodying Canonical's remote-first philosophy.

What level of experience is required?

Candidates need proven mitigation of advanced threats, deep SOC expertise, and hands-on Linux security mastery, plus leadership experience.

Does Canonical sponsor visas?

As a remote global role, no relocation or visa sponsorship is required—work from anywhere.

How does this role contribute to open source?

The SecOps team shares threat intelligence, publishes research, and enhances Ubuntu's security for the broader community.

What is the reporting structure?

This position reports directly to Canonical's Chief Information Security Officer (CISO).