Security Software Engineer Role at Canonical – Apply Now!

Full-time

Canonical

πŸ“ Company: Canonical
πŸ’Ό Job Title: Security Software Engineer
🌍 Location: Home-based (Africa / Cape Town / Worldwide)
πŸ“ Work Type: Remote, Full-Time
πŸ†” Reference: #LI-remote

✨ About Canonical

Canonical is a global leader in open-source software, best known for publishing Ubuntu, one of the most widely used platforms in cloud computing, AI, IoT, engineering, and enterprise innovation. With 1200+ employees across 75+ countries, Canonical operates as a fully distributed organisation with a culture of excellence, travel, and global collaboration.

This is a founder-led, fast-growing, and highly innovative tech company shaping the future of enterprise open-source. applicants.

πŸ” About the Security Software Engineer Role

Canonical is hiring exceptional security-focused software engineers to embed within product teams. While still contributing as software engineers, their primary mission is to elevate security practices across the organisation through:

  • Threat modeling

  • Table-top exercises

  • Architecture & design reviews

  • Static analysis tools

  • Fuzzing and vulnerability assessments

These roles span all areas of product security, from feature development and vulnerability response to community engagement and the strengthening of open-source ecosystems.

You will collaborate closely with Canonical teams, vendors, and global open-source partners.

🧩 Responsibilities

Security engineers may work on any of the following:

πŸ” Security Feature Development

  • Define, implement, and document new security functionality.

  • Lead security initiatives across product engineering teams.

πŸ› Vulnerability Response

  • Analyse, fix, and test vulnerabilities across open-source software.

  • Contribute fixes upstream to benefit communities globally.

πŸ§ͺ Security Analysis

  • Audit source code for vulnerabilities.

  • Integrate modern security tools into pipelines and infrastructure.

πŸ“œ Security Compliance

  • Work on certifications like FIPS and Common Criteria (CC).

  • Partner on CIS benchmarks and cryptographic module compliance.

πŸ›‘οΈ System Hardening

  • Develop automation to harden Ubuntu systems.

  • Extend Linux cryptographic components to meet global standards.

⬆️ Industry Research & Best Practices

  • Stay updated on global security trends.

  • Guide engineering teams on security best practices.

πŸ’» Software Development

  • Develop, test, and maintain new software capabilities as needed.

✈️ Travel

  • Participate in international team sprints twice a year.

🎯 What We’re Looking For

βœ”οΈ Excellent academic track record
βœ”οΈ Degree in Computer Science / STEM (or a strong alternative path)
βœ”οΈ Deep understanding of common security vulnerabilities
βœ”οΈ Strong knowledge of modern software engineering
βœ”οΈ Open-source development experience
βœ”οΈ Proficiency in C, C++, Python, Go, Rust, Java, Ruby, PHP, or JS/TS
βœ”οΈ Experience as a security champion
βœ”οΈ Experience with SSDLC processes
βœ”οΈ Strong written & spoken English
βœ”οΈ Linux experience (Debian/Ubuntu preferred)
βœ”οΈ Outstanding problem-solving and interpersonal skills

⭐ Bonus Skills (Optional but Valuable)

  • Linux kernel experience

  • Knowledge of FIPS, Common Criteria (CC)

  • Experience with OVAL

  • Familiarity with OpenSSL, Libgcrypt, cryptography APIs

  • Performance engineering experience

  • Fast learner with excellent community communication skills

🎁 What Canonical Offers

✨ Global distributed work environment
✨ Team sprints held twice a year in exciting world locations
✨ USD $2,000 personal learning & development budget per year
✨ Annual compensation review
✨ Performance bonus program
✨ Annual leave, maternity & paternity leave
✨ Employee Assistance Programme
✨ Travel opportunities and Priority Pass
✨ Recognition rewards for excellence

πŸ“„ Best CV Tips for This Role

βœ”οΈ Highlight open-source experience

Add GitHub links, contributions, and security-related commits.

βœ”οΈ List security tools & methods

Fuzzers, static analysis tools, threat modeling, secure coding skills.

βœ”οΈ Showcase programming languages

Include C, C++, Python, Go, Rustβ€”whichever applies.

βœ”οΈ Provide measurable achievements

E.g.: β€œReduced vulnerability exposure by 40% through automated scanning.”

βœ”οΈ Demonstrate communication skills

Security engineers must explain complex concepts clearly.

βœ”οΈ Add certifications if available

CompTIA Security+, OSCP, CEH, CISSP, etc.

To apply for this job please visit job-boards.greenhouse.io.