Linux Cryptography And Security Engineer

This is a unique opportunity to use your software engineering and cryptography skills to build and maintain the security foundation that enables Ubuntu and its users to operate securely and remain compliant with international information security standards such as FIPS 140-3 and Common Criteria.
You will apply your cryptography, Linux Security, and coding skills to enhance the Ubuntu distribution and collaborate with organizations like DISA and CIS to develop and implement security hardening benchmarks.
As a member of the Security Hardening team, you will develop automation tools to audit systems for DISA-STIG and CIS benchmark compliance, interact with stakeholders to identify gaps, and create solutions to address these challenges.
This role offers the chance to influence team culture, facilitate technical delivery, and collaborate with Canonical's kernel and engineering teams to impact all Ubuntu users.
Day-to-day responsibilities

Collaborate with the Security Hardening team to achieve and maintain security certifications.
Enhance Linux cryptographic components (OpenSSL, Libgcrypt, GnuTLS, etc.)
for FIPS and CC certification.
Work with external security consultants to test and validate kernel and crypto modules.
Develop security hardening benchmarks and automation for auditing and remediation.
Contribute to Ubuntu mainline and upstream projects to benefit the community.
Communicate and collaborate internally and externally to improve security, resolve issues, and deliver solutions.
What we are looking for in you

Experience with low-level Linux cryptography APIs and debugging.
Strong software engineering fundamentals, including C development skills.
Experience with Linux system administration and shell scripting.
Knowledge of security and cryptography principles, with experience in secure coding.
Development experience with open source libraries.
Excellent communication skills for remote collaboration.
Additional skills that you might also bring

Experience with FIPS/Common Criteria certified products and standards.
Experience with DISA-STIG or CIS benchmarks and related tooling.
Work with Linux Kernel.
Knowledge of Python, OVAL, and Ansible.
Contributions to open source projects.
What we offer you
We offer competitive compensation, including base pay, annual bonuses, and benefits reflecting our values.
Our remote-first environment includes biannual in-person sprints, a learning budget, and various employee benefits such as leave, parental leave, and travel opportunities.
About Canonical
Canonical is a leader in open source, publishing Ubuntu, a key platform for AI, IoT, and cloud computing.
We are a remote-first company since 2004, committed to excellence and innovation.
We value diversity and are an equal opportunity employer.
#J-18808-Ljbffr