About Canonical

Canonical is the pioneering company behind Ubuntu, the world's leading open source platform powering AI, IoT, cloud computing, and enterprise infrastructure. Since 2004, Canonical has championed open source innovation, publishing Ubuntu as a free, secure, and reliable operating system used by millions worldwide. As a remote-first organization, Canonical recruits top global talent to drive excellence in software engineering, security, and open source contributions. Join a team that's changing the world daily through collaborative, high-impact projects.

Role Overview

The Linux Cryptography and Security Engineer role at Canonical offers a unique opportunity to leverage your expertise in software engineering, applied cryptography, and Linux security. You'll build and maintain the foundational security layers that ensure Ubuntu meets stringent international standards like FIPS 140-3 and Common Criteria. Working within the Security Hardening team, you'll enhance Ubuntu's distribution, collaborate with organizations such as DISA and CIS on hardening benchmarks, and develop automation for compliance auditing. This position impacts every Ubuntu user by driving secure, compliant features upstream.

Impact on Ubuntu and Open Source

Your work will directly strengthen Ubuntu's cryptographic stack, including OpenSSL, Libgcrypt, and GnuTLS, ensuring enterprise-grade security. By contributing to mainline Ubuntu and upstream projects, you'll benefit the global open source community while helping Canonical maintain leadership in certified Linux distributions.

Key Responsibilities

• Collaborate with Security Hardening engineers to achieve and retain certifications like FIPS and Common Criteria.
• Extend Linux cryptographic components with features needed for compliance.
• Partner with external security consultants to test and validate kernel and crypto modules.
• Develop security hardening benchmarks and audit/remediation automation with partners like DISA and CIS.
• Contribute code to Ubuntu mainline and upstream open source projects.
• Facilitate communication across Canonical and external stakeholders to enhance security posture and deliver solutions on time.

Qualifications & Requirements

Canonical seeks engineers with proven hands-on experience in Linux cryptography and security. Essential qualifications include:

• Deep knowledge of low-level Linux cryptography APIs and debugging techniques.
• Strong software engineering skills, particularly in C, with a portfolio of demonstrated work.
• Practical Linux system administration and shell scripting proficiency.
• Solid understanding of security fundamentals, cryptography, and best practices for secure code implementation.
• Extensive experience developing with open source libraries.
• Excellent verbal and written communication for effective remote collaboration.

Additional Desirable Skills

• Experience with FIPS/Common Criteria certified products and standards.
• Work with DISA-STIG or CIS benchmarks, including Compliance as Code tooling.
• Linux kernel development exposure.
• Proficiency in Python, OVAL, and Ansible.
• Track record of open source contributions.

Benefits & Perks

Canonical offers competitive, performance-based compensation reviewed annually, plus a bonus structure. Enjoy a fully distributed work environment with twice-yearly in-person team sprints—remote-first since 2004. Additional perks include:

• USD 2,000 personal learning and development budget per year.
• Recognition rewards for outstanding contributions.
• Generous annual holiday leave, maternity, and paternity leave.
• Employee Assistance Programme for well-being support.
• Travel opportunities, Priority Pass, and upgrades for company events.

Career Growth

At Canonical, career progression is driven by impact and excellence. You'll influence team direction, security culture, and technical delivery while collaborating with elite kernel and engineering teams. With global exposure, open source contributions, and annual reviews, this role accelerates your expertise in cryptography, Linux security, and high-stakes engineering. Access learning budgets and mentorship to stay at the forefront of open source innovation.

Why Join Canonical

Be part of the company revolutionizing open source at scale. Ubuntu's ubiquity in cloud, AI, and IoT means your security enhancements protect millions. Canonical's remote-first culture fosters autonomy, trust, and global collaboration without geographical barriers. Work with world-class engineers on mission-critical projects that set industry standards. If you thrive on challenging problems, open source excellence, and making a tangible difference, Canonical is your platform for unparalleled impact.

Role FAQs

Is this role fully remote?

Yes, it's home-based worldwide with biannual in-person sprints for team collaboration.

What experience level is required?

Senior-level expertise in Linux cryptography, C programming, and security is essential; additional cert experience is a plus.

How does Canonical support professional development?

USD 2,000 annual learning budget, annual reviews, and opportunities for open source leadership.

Will I contribute to open source?

Absolutely—landing features in Ubuntu mainline and upstream projects is core to the role.

What makes Canonical's security team unique?

We drive real-world compliance for Ubuntu in enterprise, government, and regulated sectors, partnering with DISA, CIS, and cert labs.