About the role
Canonical, the company behind Ubuntu, is hiring Security Software Engineers to be embedded across product engineering teams. Your primary focus will be elevating security thinking across the team — through threat modeling, architecture reviews, static analysis, fuzzing, and tabletop exercises — while also contributing to product development. You'll work across vulnerability response, proactive security, feature development, open source community participation, and security certifications like FIPS and Common Criteria. This is a fully remote, globally distributed role with mandatory in-person team sprints twice a year.
What we're looking for
Undergraduate degree in Computer Science or STEM (or equivalent path); thorough understanding of common vulnerability categories and mitigations; proficiency in one or more of C, C++, Python, Go, Rust, Java, Ruby, PHP, or JavaScript/TypeScript; experience as a security champion and driving security within an SSDLC process; familiarity with open source development tools and Linux (Debian/Ubuntu preferred); strong written and verbal English communication; experience with Linux kernel, FIPS/Common Criteria, OpenSSL, or OVAL is a plus.
Security EngineeringUbuntuLinuxOpen SourceVulnerability ResearchSSDLCPythonC++GoRustFIPSAppSec