Ubuntu Security Engineer

Home Based - Americas

Applications have closed

Canonical Ltd.

Canonical makes open source secure, reliable and easy to use, providing support for Ubuntu and a portfolio of enterprise-grade technologies. Founded in 2004, Canonical operates globally with team members in over 80 countries.

View company page

Ubuntu Security Engineer - Canonical

What is Canonical?

Canonical is a growing international software company that works with the open-source community to deliver Ubuntu, “the world’s best free software platform”. Our mission is to realize the potential of open source software in the lives of individuals and organisations. Our services are helping individuals and businesses worldwide to reduce costs, improve efficiency and enhance security with Ubuntu.

Summary

Ubuntu is built with Security in mind from the ground up and keeps you protected against security vulnerabilities. Ubuntu helps organizations remain compliant to FIPS 140-2 and Common Criteria standards.  You will use your applied cryptography, Linux, Linux Security, bash and C coding skills to enhance the Ubuntu distribution to attain FIPS and Common Criteria certifications. You will also work with DISA and CIS to help draft Ubuntu STIGs and Ubuntu CIS benchmarks. You will work with and support the team to develop automation tooling for making Ubuntu systems STIG and CIS benchmark compliant and audit the systems for compliance. Scripting skills (OVAL/bash) will be used to assist with tooling. You will work with the team to achieve new compliance and certifications for Ubuntu as needed. You will have the opportunity to influence the culture, facilitate technical delivery, and work with your team on direction and execution.

The successful candidate will collaborate with Canonical’s kernel and security teams to extend and enhance the Ubuntu distribution with the features necessary to achieve and retain FIPS and CC certification.

Key Responsibilities

  • Support the Security Certifications engineers to achieve and retain various Security certifications
  • Work with the Manager on scoping, prioritization and resourcing for all team's deliverable
  • Extend and enhance Linux cryptographic components - specifically with modules such as OpenSSL/Libgcrypt - with the features and functionality required for FIPS and CC certification
  • Collaborate with external security consultants to test and validate kernel and crypto components, achieve and retain FIPS and CC certification, and develop CIS benchmarks and STIGs for Ubuntu
  • Work in partnership with the internal project manager to ensure delivery against project goals and milestones, identifying technical risks and mitigating them
  • Contribute to Ubuntu mainline and upstream projects to land solutions and benefit the community
  • Contribution to continuous integration infrastructure: automated testing and validation
  • Self-discipline and self-motivation to support and perform day-to-day engineering activities and deliver to schedules in a globally distributed team
  • Communication and collaboration within and outside Canonical to rapidly resolve issues and keep the project on track

Required Skills and Experience

  • Significant experience working with open source libraries
  • Knowledge of Linux Security and Cryptography
  • Experience with patching and associated tooling: identifying, isolating, applying and testing patches, and resolving any resulting issues
  • General Linux development skills (C proficiency, git experience, debugging with gdb)
  • Experience with bash scripting

Desired Skills and Experience

  • Software packaging and maintenance experience, especially using Debian packaging
  • Knowledge of and familiarity with low-level Linux cryptography APIs and debugging
  • Experience working with Linux Kernel
  • Familiarity with open source development tools and methodologies, especially those in common-use for development of the Linux ecosystem such as: Launchpad, IRC, and mailing-lists.
  • Knowledge of security benchmarks such as STIG and CIS benchmarks. 
  • Security Certification experience and knowledge in FIPS and/or CC
  • Experience with OVAL (Open Vulnerability Assessment Language) and Go

Employee Benefits

  • Flexible working options/work from home
  • Tuition and Training Reimbursement
  • Annual Bonus Plan
  • Holiday for Service (Annual Leave)
  • Conference Leave
  • Priority Pass
  • Laptop Refresh Benefit

We are proud to foster a workplace free from discrimination. We truly believe that diversity of experience, perspectives, and background will lead to a better environment for our employees and a better platform for our users and customers. This is something we value deeply and we encourage everyone to come be a part of the world of Ubuntu.

#LI-Remote #stack

Tags: APIs Automation Bash C Compliance Crypto Cryptography Debian FIPS 140-2 Linux Open Source Scripting Ubuntu Vulnerabilities

Perks/benefits: Flex hours Gear Salary bonus

Regions: Remote/Anywhere North America
Job stats:  60  4  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.