Security Engineer - Ubuntu

This is an exciting opportunity for a software security engineer passionate about open source software and Ubuntu. Come build a rewarding, meaningful career working with the best and brightest people in technology at Canonical, the growing international software company behind Ubuntu.

As part of the core Ubuntu team, you will stay on the cutting edge of security development. The successful candidate will help ensure a first class secure experience by keeping Ubuntu secured, up to date, and well tested. Strong communication and relationship skills are as important as superb technical skills in this role, as the successful candidate will be responsible for process communication and coordination between Ubuntu, internal teams and external partners, as well as ensuring commonality of purpose and technical approach. This job involves international travel several times a year, usually for one week.

What you’ll do

• Follow security-related mailing lists and other sources of information about emerging vulnerabilities, and promptly assess their impact on Ubuntu 
• Keep track of vulnerabilities in Ubuntu releases as they are discovered, researched and fixed (using internal software tools)
• Analyze, fix, and test vulnerabilities in Ubuntu packages
• Collaborate with other teams in the Ubuntu community and with upstream developers where appropriate, to exchange or develop vulnerability patches and make sure that Ubuntu includes the very best security features
• Participate in the development of proactive security features in Ubuntu
• Occasionally audit source code for vulnerabilities
• Provide guidance and assist with projects across Ubuntu and Canonical to ensure secure coding practices are followed
• Resolve issues raised by end users and commercial support customers

Who you are

• You have a strong grasp of Linux security technologies
• You have a thorough understanding of the common categories of security vulnerabilities and techniques for fixing them
• You are familiar with coordinated disclosure practices
• You are familiar with open source development tools and methodologies
• You have a strong technical knowledge of Ubuntu, with the capacity to learn about new systems and techniques quickly
• You are skilled in C, Python, and other programming languages
• You can develop automated regression tests, preferably with PyUnit
• You have excellent logic, problem-solving, troubleshooting, and decision-making skills
• You can clearly and effectively communicate with the team and Ubuntu community members
• You have excellent online communications skills, including IRC, email, and other online venues
• You can communicate security information in a positive and collaborative manner
• You can be productive in a globally distributed team through self-discipline and self-motivation
• You have 2+ years security experience, open source security experience preferred

Canonical is proud to foster a workplace free from discrimination. We truly believe that diversity of experience, perspectives, and background will lead to a better environment for our employees and a better platform for our users and customers. This is something we value deeply and we encourage everyone to come be a part of the world of Ubuntu.