Staff Security Operations Engineer

OverviewWe have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions – at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest in cyber attack and defence, and outstanding academic and career performance even if experience is limited.What you will doImplement and evolve Canonical's SecOps security standards and playbooksAnalyse and improve Canonical's security architectureEvaluate, select and implement new security tools and practicesIdentify, contain and guide the remediation of security threats and cyber attacksGrow the presence and thought leadership of Canonical SecOps practiceContribute to open source threat intelligence initiativesDrive threat modelling, table top exercises and other SecOps practices across Engineering, IS and CanonicalDevelop Canonical SecOps learning and development materialsPublish blog posts, whitepapers and conference presentationsIdentify, implement and track SecOps KPIsPlan and deliver SecOps work in the framework of Canonical's agile engineering practiceWork with Security leadership to present information and influence changeWhat we are looking forAn exceptional academic track recordUndergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative pathDrive and a track record of going above-and-beyond expectationsDeep personal motivation to be at the forefront of technology securityExpertise in threat modelling and risk management frameworksKnowledge of security architecture and market-leading security toolsExperience contributing to, and consuming, threat intelligence feedsExperience in security risk management frameworks such as NIST CSFExperience with security standards such as ISO 27001Optional things we valueExperience in a security operations team or a security operations centre (SOC)Experience in offensive or defensive security teams with hands‑on abilityExperience with state‑actor and other advanced persistent threatsWhat we offer youDistributed work environment with twice‑yearly team sprints in personPersonal learning and development budget of USD 2,000 per yearAnnual compensation reviewRecognition rewardsAnnual holiday leaveMaternity and paternity leaveEmployee Assistance ProgrammeOpportunity to travel to new locations to meet colleaguesPriority Pass, and travel upgrades for long haul company eventsAbout CanonicalCanonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence – in order to succeed, we need to be the best at what we do. Canonical has been a remote‑first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.Equity and CompensationCanonical is an equal opportunity employer. We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.Seniority levelMid‑Senior levelEmployment typeFull‑timeJob functionInformation Technology #J-18808-Ljbffr