Job Title

This global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for design, implementation, and evolution of Canonical security practices, techniques, tools, systems, and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure, and build processes. They are responsible for assuring the security and integrity of our infrastructure and product deployments. They design and implement technical security controls to automatically identify, contain, and remediate security threats. The team also contributes ideas and requirements for Canonical product security, enhancing resilience for Ubuntu customers and users against cyber attacks.As a leader in cyber security at the company, the SecOps team manager will collaborate with the Organisational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical. They will operate within a broader security organization, lead a high-performing security team, and improve Canonical''s security posture. They will also lead initiatives to incorporate the team''s insights into Canonical''s software development processes.While this is a management position, we expect managers to be expert practitioners, able to lead by example, contribute at the highest level, and assess work based on their professional experience and skills. Candidates should have deep, hands-on expertise with a range of open source and proprietary security tools and practices, which they can integrate into a comprehensive next-generation security solution across Canonical''s interests.The SecOps team''s mission is not only to secure Canonical but also to contribute to the security of the wider open source community. They may share knowledge through public presentations, industry events, threat intelligence sharing, and represent Canonical in sector-specific governance bodies.This role reports to the CISO.What you will do in this role:Hire and mentor a team of outstanding technical security professionalsDefine Canonical''s SecOps security standards and playbooksOwn and drive the architecture and design of the SOCAnalyze and improve Canonical''s security architectureEvaluate, select, and implement new security tools and practicesIdentify, contain, and guide the remediation of security threats and cyber attacksGrow the presence and thought leadership of Canonical SecOps practiceContribute to open source threat intelligence initiativesDrive threat modeling, tabletop exercises, and other SecOps practices across Engineering, IS, and CanonicalDevelop Canonical SecOps learning and development materialsPublish blog posts, whitepapers, and conference presentationsIdentify, implement, and track SecOps KPIsPlan and deliver SecOps work within Canonical''s agile engineering frameworkCollaborate with Security leadership to present information and influence changeWhat we are looking for:Proven track record of mitigating threats from advanced threat actors and nation-statesExpertise in building SOCs from the ground upIn-depth knowledge of SOC architecture, including logging, firewalls, network segmentation, honeypots, etc.Understanding of how the SOC functions operationally, not just how to use itExpertise in Linux securityAbility to define, implement, automate, and measure effective incident response playbooksKnowledge of security architecture and leading security toolsExperience contributing to and consuming threat intelligence feedsExperience with security risk management frameworks such as NIST CSFExceptional academic record from high school through universityUndergraduate degree in Computer Science or STEM, or a compelling alternative narrativeDrive and a history of exceeding expectationsDeep motivation to stay at the forefront of technology securityLeadership and management skillsExcellent business English writing and presentation skillsConfidence in reporting security performance metrics with accuracy and accountabilityOptional skills we value:Experience in offensive or defensive security teams with hands-on skillsExperience with open source security toolsKnowledge of security standards like ISO 27001Experience with security posture management of corporate endpoints #J-18808-Ljbffr