Linux Engineer enhancing security technology for Canonical’s Ubuntu. Collaborating on FIPS and CC certification while implementing security frameworks and benchmarks.
Responsibilities
Collaborate with other engineers in the Security Hardening team to achieve and retain various Security certifications
Extend and enhance Linux cryptographic components (OpenSSL, Libgcrypt, GnuTLS, and others) with the features and functionality required for FIPS and CC certification
Collaborate with external security consultants to test and validate kernel and crypto module components
Work with external partners to develop security hardening benchmarks and audit + remediation automation for Ubuntu
Contribute to Ubuntu mainline and upstream projects to land solutions and benefit the community
Communication and collaboration within and outside Canonical to identify opportunities to improve our security posture, rapidly resolve issues, and deliver high-quality solutions on schedule
Requirements
Hands-on experience with low-level Linux cryptography APIs and debugging
Excellent software engineering fundamentals, including prior experience with C development, and the ability to demonstrate such
Hands-on experience with Linux system administration and shell scripting
Demonstrated knowledge of security and cryptography fundamentals + direct experience writing secure code and implementing best practices
Significant development experience working with open source libraries
Excellent verbal and written communications to enable efficient collaboration with internal and external partners in a remote-first environment
Prior experience working on FIPS/Common Criteria certified products and in-depth knowledge of the underlying standards
Prior experience working directly with DISA-STIG or CIS benchmarks, including related audit + remediation tooling (e.g. Compliance as Code)
Experience working directly with Linux Kernel
Prior experience with Python, OVAL (Open Vulnerability Assessment Language), and Ansible
History of contributions to open source projects
Benefits
Distributed work environment with twice-yearly team sprints in person - we’ve been working remotely since 2004!
Personal learning and development budget of USD 2,000 per year
Annual compensation review
Recognition rewards
Annual holiday leave
Maternity and paternity leave
Employee Assistance Programme
Opportunity to travel to new locations to meet colleagues from your team and others
Priority Pass for travel and travel upgrades for long haul company events
Senior Product Security Consultant at CENSUS LABS evaluating software security and threats. Responsible for validating security compliance and reporting on risks in complex systems.
Container Security Consultant needed for 12 - month contract with enterprise bank in Toronto. Must have strong container security experience with OpenShift, Docker, Kubernetes.
Technical Program Manager managing security programs aligned with security strategy at Guidewire. Collaborating with various stakeholders to enhance security maturity and efficiency.
Senior IT Architect specialized in Security & Networking infrastructure technologies leading architecture development for technology projects. Collaborating with multiple teams to ensure alignment with strategic objectives.
Director of IT Security leading the cybersecurity strategy for a remote workforce at Directive Consulting. Responsible for risk management, incident response, and compliance initiatives.
Senior Consultant in Cybersecurity for Wavestone managing client - facing engagements and providing strategic advisory services. Leading teams and business development in cybersecurity engagements with top organizations.
Senior Information Security Advisor needed for a 6 - month contract in Scarborough, ON. Provide security advisory, risk assessments, and cloud controls in banking.
Supervisor reporting to the Manager of Parking and Security at Scarborough Health Network hospitals. Responsible for supervising on - duty Security Guards and ensuring customer - focused services.
Security and Compliance Associate at Habitat Learn, an EdTech company focused on accessibility. Supporting compliance and security operations for multiple frameworks in a remote role based in Ontario.