Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our SecOps team to enhance security practices and tackle cyber threats.
- Company: Canonical is a leading tech firm driving the open source revolution with Ubuntu.
- Benefits: Enjoy remote work, a personal development budget, and annual compensation reviews.
- Why this job: Be part of a mission to secure the open source ecosystem and grow your skills.
- Qualifications: A strong academic background in Computer Science or STEM is essential.
- Other info: We value diversity and offer a workplace free from discrimination.
The predicted salary is between 36000 - 60000 Β£ per year.
We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest and engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.
Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team.
The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.
The SecOps teamβs mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.
What you will do in this role:
- Implement and evolve Canonical's SecOps security standards and playbooks
- Analyse and improve Canonical's security architecture
- Evaluate, select and implement new security tools and practices
- Identify, contain and guide the remediation of security threats and cyber attacks
- Grow the presence and thought leadership of Canonical SecOps practice
- Contribute to open source threat intelligence initiatives
- Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
- Develop Canonical SecOps learning and development materials
- Publish blog posts, whitepapers and conference presentations
- Identify, implement and track SecOps KPIs
- Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
- Work with Security leadership to present information and influence change
What we are looking for:
- An exceptional academic track record
- Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
- Drive and a track record of going above-and-beyond expectations
- Deep personal motivation to be at the forefront of technology security
- Expertise in threat modelling and risk management frameworks
- Knowledge of security architecture and market-leading security tools
- Experience contributing to, and consuming, threat intelligence feeds
- Experience in security risk management frameworks such as NIST CSF
- Experience with security standards such as ISO 27001
Optional things we value:
- Experience in a security operations team or a security operations centre (SOC)
- Experience in offensive or defensive security teams with hands-on ability
- Experience with state-actor and other advanced persistent threats
What we offer you:
- We consider geographical location, experience, and performance in shaping compensation worldwide.
- We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance.
- In addition to base pay, we offer a performance-driven annual bonus.
- We provide all team members with additional benefits, which reflect our values and ideals.
- We balance our programs to meet local needs and ensure fairness globally.
- Distributed work environment with twice-yearly team sprints in person
- Personal learning and development budget of USD 2,000 per year
- Annual compensation review
- Recognition rewards
- Annual holiday leave
- Maternity and paternity leave
- Employee Assistance Programme
- Opportunity to travel to new locations to meet colleagues
- Priority Pass, and travel upgrades for long haul company events
About Canonical:
Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.
Canonical is an equal opportunity employer. We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.
Staff Security Operations Engineer employer: Canonical
Contact Detail:
Canonical Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Staff Security Operations Engineer
β¨Tip Number 1
Familiarise yourself with Canonical's security practices and tools. Understanding their specific security architecture and the tools they use will give you an edge in discussions during interviews.
β¨Tip Number 2
Engage with the open source community. Contributing to projects or participating in discussions can showcase your commitment to security and help you build a network that may lead to referrals.
β¨Tip Number 3
Stay updated on the latest trends in cybersecurity, especially regarding advanced persistent threats. Being knowledgeable about current threats will demonstrate your passion and expertise in the field.
β¨Tip Number 4
Prepare to discuss your personal projects or experiences related to threat modelling and risk management. Real-world examples can significantly strengthen your candidacy and show your hands-on experience.
We think you need these skills to ace Staff Security Operations Engineer
Some tips for your application π«‘
Tailor Your CV: Make sure your CV highlights relevant experience in security operations, threat modelling, and risk management. Use specific examples that demonstrate your expertise in these areas, especially if you have experience with advanced persistent threats.
Craft a Compelling Cover Letter: In your cover letter, express your passion for cybersecurity and how your background aligns with Canonical's mission. Mention any personal projects or contributions to open source that showcase your commitment to the field.
Highlight Relevant Skills: Clearly list your technical skills related to security architecture, tools, and frameworks like NIST CSF and ISO 27001. Make sure to include any hands-on experience you have in security operations or offensive/defensive security roles.
Showcase Continuous Learning: Mention any certifications, courses, or workshops you've completed that are relevant to the role. This demonstrates your commitment to staying updated in the fast-evolving field of cybersecurity.
How to prepare for a job interview at Canonical
β¨Showcase Your Technical Expertise
Be prepared to discuss your experience with security architecture, threat modelling, and risk management frameworks. Highlight any specific tools or practices you've implemented in previous roles, as this will demonstrate your hands-on knowledge and ability to contribute to Canonical's SecOps team.
β¨Demonstrate Your Passion for Cybersecurity
Share your personal projects or interests related to cybersecurity, such as contributions to open source initiatives or participation in relevant communities. This shows your drive and commitment to staying at the forefront of technology security, which is highly valued by Canonical.
β¨Prepare for Scenario-Based Questions
Expect to face scenario-based questions that assess your problem-solving skills in real-world situations. Practice articulating how you would identify, contain, and remediate security threats, as well as how you would improve existing security practices within an organisation.
β¨Research Canonical and Its Mission
Familiarise yourself with Canonical's goals, particularly their focus on enhancing the security of the open source ecosystem. Understanding their mission will allow you to align your answers with their values and demonstrate your genuine interest in contributing to their objectives.
