About Canonical

Canonical is the company behind Ubuntu, the world's leading open source operating system powering enterprise cloud, AI, data science, IoT, and innovation across industries. As a pioneer in global distributed collaboration, Canonical employs over 1200 colleagues in 75+ countries with very few office-based roles. Teams align through strategic in-person meetings two to four times a year in exciting global locations. Founder-led and profitable, Canonical grows rapidly while serving top public cloud providers, silicon leaders, and sector innovators.

Role Overview

Canonical seeks exceptional Security Software Engineers to embed across product teams, elevating security practices through threat modeling, tabletop exercises, architecture reviews, static analysis, and fuzzing. These roles span feature development, vulnerability response, proactive security, and open source contributions. Engineers collaborate with Canonical teams, customers, and partners in the ecosystem. Product teams reserve spots for security experts, including specialized products like AppArmor kernel enhancements and Ubuntu Security Guide. As Ubuntu's publisher, Canonical manages long-term security for the OS and vast open source upstreams, demanding fluency in major languages and scalable tools.

Worldwide Remote Opportunity

This home-based role is open worldwide, requiring self-discipline for distributed teamwork and mandatory international travel at least twice yearly for one-week sessions.

Key Responsibilities

Security Software Engineers at Canonical tackle diverse challenges:

• Define, implement, and document new security features.
• Lead security-focused initiatives within product engineering teams.
• Analyze, fix, and test vulnerabilities in open source software.
• Contribute to Ubuntu and upstream projects for community benefit.
• Audit source code for vulnerabilities.
• Integrate tools into security infrastructure, pipelines, and processes.
• Achieve and retain certifications like FIPS and Common Criteria.
• Extend Linux cryptographic components for compliance.
• Collaborate on CIS benchmarks with partners.
• Design hardening automation for Ubuntu.
• Monitor security industry trends.
• Develop, test, and maintain software capabilities.
• Guide teams on security best practices.

Qualifications & Requirements

Canonical looks for top talent with:

• Exceptional academic record from high school and university.
• Undergraduate degree in Computer Science or STEM (or compelling alternative path).
• Track record exceeding expectations.
• Deep knowledge of security vulnerabilities and fixes.
• Modern software engineering expertise.
• Open source development familiarity.
• Proficiency in C, C++, Python, Go, Rust, Java, Ruby, PHP, or JavaScript/TypeScript.
• Security champion experience.
• Driving security in SSDLC processes.
• Professional English skills.
• Linux experience, preferably Debian/Ubuntu.
• Interpersonal skills, curiosity, flexibility, accountability.
• Passion, self-motivation, communication excellence.
• Results-oriented drive.

Optional valued skills include clear communication with stakeholders and advanced security tooling.

Benefits & Perks

Joining Canonical offers premium perks tailored to remote security engineers:

• 100% remote work from anywhere worldwide.
• Global team collaboration with exciting travel meetups.
• Work on impactful Ubuntu security projects.
• Open source community engagement.
• Founder-led stability in a growing company.
• Professional development in cutting-edge security.

Career Growth

Canonical fosters growth for security engineers through cross-team integration, leadership in initiatives, and contributions to high-profile certifications and tools. Advance by driving SSDLC improvements, upstream impacts, and partnerships. The distributed model builds skills in global communication, self-management, and innovation at scale, positioning you as a leader in open source security.

Why Join Canonical

Be part of Ubuntu's mission transforming enterprise tech. Canonical's remote-first culture, profitably scaling with 1200+ experts, offers unparalleled open source impact. Challenge teams on security, shape products like AppArmor and USG, and engage tens of thousands of upstreams. If you're passionate about security, open source, and Canonical's vision, this is your role to excel globally.

Role FAQs

Q: Is this role fully remote? Yes, home-based worldwide with twice-yearly travel.

Q: What programming languages are needed? Skill in C/C++, Python, Go, Rust, etc.; Linux fluency essential.

Q: What's the focus? Embedding security in products via best practices and tools.

Q: Any degree required? CS/STEM preferred, with exceptional track record.

Q: How does Canonical support open source? Deep investments in Ubuntu and ecosystem security.