At a Glance
- Tasks: Join a new team to enhance security practices and combat cyber threats.
- Company: Canonical, a leader in open source technology with a focus on security.
- Benefits: Competitive pay, annual bonuses, remote work, and a personal development budget.
- Other info: Dynamic work environment with opportunities for travel and professional growth.
- Why this job: Make a real impact on global security while working with cutting-edge technology.
- Qualifications: Strong academic background in Computer Science or STEM; passion for cybersecurity.
The predicted salary is between 60000 - 80000 € per year.
We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high‑value cyber targets against advanced persistent threats and state‑level actors. We have more junior roles for exceptional individuals with a proven personal interest and engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.
Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team. The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated.
The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack. The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector‑specific governance bodies.
What you will do in this role:
- Implement and evolve Canonical's SecOps security standards and playbooks
- Analyse and improve Canonical's security architecture
- Evaluate, select and implement new security tools and practices
- Identify, contain and guide the remediation of security threats and cyber attacks
- Grow the presence and thought leadership of Canonical SecOps practice
- Contribute to open source threat intelligence initiatives
- Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
- Develop Canonical SecOps learning and development materials
- Publish blog posts, whitepapers and conference presentations
- Identify, implement and track SecOps KPIs
- Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
- Work with Security leadership to present information and influence change
What we are looking for:
- An exceptional academic track record
- Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
- Drive and a track record of going above‑and‑beyond expectations
- Deep personal motivation to be at the forefront of technology security
- Expertise in threat modelling and risk management frameworks
- Knowledge of security architecture and market‑leading security tools
- Experience contributing to, and consuming, threat intelligence feeds
- Experience in security risk management frameworks such as NIST CSF
- Experience with security standards such as ISO 27001
Optional things we value:
- Experience in a security operations team or a security operations centre (SOC)
- Experience in offensive or defensive security teams with hands‑on ability
- Experience with state‑actor and other advanced persistent threats
What we offer you:
- We consider geographical location, experience, and performance in shaping compensation worldwide.
- We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance.
- In addition to base pay, we offer a performance‑driven annual bonus.
- We provide all team members with additional benefits, which reflect our values and ideals.
- We balance our programs to meet local needs and ensure fairness globally.
- Distributed work environment with twice‑yearly team sprints in person
- Personal learning and development budget of USD 2,000 per year
- Annual compensation review
- Recognition rewards
- Annual holiday leave
- Maternity and paternity leave
- Employee Assistance Programme
- Opportunity to travel to new locations to meet colleagues
- Priority Pass, and travel upgrades for long haul company events
Canonical is an equal opportunity employer.
Staff Security Operations Engineer employer: Canonical Group Ltd
Canonical is an exceptional employer that fosters a dynamic and inclusive work culture, particularly for those in the Security Operations Engineer role. With a strong emphasis on personal growth, employees benefit from a generous learning and development budget, annual compensation reviews, and opportunities to contribute to the wider open source community. The company's commitment to recognising outstanding performance, coupled with a distributed work environment and unique travel opportunities, makes it an attractive place for individuals passionate about cybersecurity and innovation.
StudySmarter Expert Advice🤫
We think this is how you could land Staff Security Operations Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already at Canonical or in similar roles. A friendly chat can open doors and give you insights that might just set you apart from the crowd.
✨Tip Number 2
Show off your skills! If you've got a portfolio of projects or contributions to open source, make sure to highlight them. This is your chance to demonstrate your hands-on experience and passion for security operations.
✨Tip Number 3
Prepare for the interview by brushing up on the latest trends in cyber security. Be ready to discuss how you would tackle real-world scenarios, especially those involving advanced persistent threats. We want to see your problem-solving skills in action!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets the attention it deserves. Plus, it shows you’re serious about joining our team and contributing to the future of security at Canonical.
We think you need these skills to ace Staff Security Operations Engineer
Some tips for your application 🫡
Show Your Passion for Security:When writing your application, let us see your enthusiasm for cybersecurity! Share any personal projects or experiences that highlight your interest in defending against cyber threats. We love candidates who are genuinely excited about the field.
Tailor Your Application:Make sure to customise your application to reflect the specific skills and experiences mentioned in the job description. Highlight your expertise in threat modelling, security architecture, and any relevant tools you've used. This helps us see how you fit into our team!
Be Clear and Concise:Keep your application straightforward and to the point. Use clear language and avoid jargon unless it's necessary. We appreciate a well-structured application that makes it easy for us to understand your qualifications and motivations.
Apply Through Our Website:Don't forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it shows you’re serious about joining our team at StudySmarter!
How to prepare for a job interview at Canonical Group Ltd
✨Know Your Stuff
Make sure you brush up on your knowledge of security architecture and the latest market-leading security tools. Be ready to discuss your experience with threat modelling and risk management frameworks like NIST CSF. This will show that you're not just familiar with the concepts, but that you can apply them in real-world scenarios.
✨Show Your Passion
Demonstrate your deep personal motivation for being at the forefront of technology security. Share any personal projects or contributions to open source initiatives that highlight your engagement in cyber attack and defence. This will help us see your commitment beyond just academic achievements.
✨Prepare for Scenario Questions
Expect to face scenario-based questions where you'll need to identify, contain, and guide the remediation of security threats. Practise articulating your thought process clearly and logically, as this will showcase your problem-solving skills and ability to think on your feet.
✨Be Ready to Collaborate
Since the role involves working closely with various teams, be prepared to discuss how you've successfully collaborated in the past. Highlight any experiences where you've contributed to team efforts, especially in a security operations context, and how you can drive thought leadership within Canonical's SecOps practice.
