This is a unique opportunity to use your software engineering and cryptography skills to build and maintain the security foundation that enables ubuntu and its users to operate securely and remain compliant with international information security standards such as fips 140-3 and common criteria. You will leverage your applied cryptography, linux security, and coding skills to enhance the ubuntu distribution and collaborate with organizations like disa and cis to develop and implement security hardening benchmarks.
as a member of the security hardening team, you will develop automation tools to audit systems for disa-stig and cis benchmark compliance, interact with stakeholders to identify gaps, and create solutions to address these challenges. You will influence team and security culture, facilitate technical delivery, and help shape team strategies, working closely with canonical's kernel team and broader engineering groups to impact all ubuntu users.
day-to-day responsibilities
1. collaborate with the security hardening team to achieve and maintain various security certifications.
2. enhance linux cryptographic components like openssl, libgcrypt, and gnutls for fips and cc certification.
3. work with external security consultants to test and validate kernel and crypto modules.
4. develop security hardening benchmarks and automation for audit and remediation processes.
5. contribute to ubuntu mainline and upstream projects to benefit the community.
6. engage with internal and external teams to improve security posture and deliver solutions efficiently.
qualifications
* hands-on experience with linux cryptography apis and debugging.
* strong software engineering fundamentals, particularly in c programming.
* experience with linux system administration and shell scripting.
* knowledge of security and cryptography principles, with experience in secure coding practices.
* development experience with open source libraries.
* excellent communication skills for remote collaboration.
additional skills beneficial
* experience with fips/common criteria certified products and standards.
* experience with disa-stig or cis benchmarks and related tooling.
* work with linux kernel.
* proficiency in python, oval, and ansible.
* contributions to open source projects.
what we offer
we offer competitive compensation considering location, experience, and performance, with annual reviews and bonuses. Benefits include a flexible, remote-first work environment, a learning budget, recognition rewards, leave policies, and travel opportunities.
about canonical
canonical is a leader in open source, publishing ubuntu, a key platform for ai, iot, and cloud. We operate globally, uphold high standards, and promote excellence. Since 2004, we've been a remote-first company, encouraging innovative thinking and continuous learning.
canonical is committed to diversity and equal opportunity, fostering an inclusive workplace that values all backgrounds and perspectives.
#j-18808-ljbffr