Secure Our Community
The Ubuntu Security Team requires a skilled and passionate engineer to join our ranks. This critical role plays a key part in safeguarding the open source community and Ubuntu users from emerging threats.
You will collaborate closely with internal teams and external partners to identify issues, prioritize them, and coordinate remediation. This engineering-focused position may also involve activities such as producing security assessments, building features, conducting code reviews, developing internal tools, engaging with the open source community, and participating in industry initiatives and events.
This position demands international travel at least twice a year for one week and productivity in a globally distributed team through self-discipline and self-motivation.
Identifying and addressing vulnerabilities in open source packages
Monitoring vulnerabilities in the Ubuntu ecosystem throughout their lifecycle
Collaborating with other teams and upstream developers to exchange or develop vulnerability patches and ensure Ubuntu includes robust security features
Auditing source code for vulnerabilities
Developing tools to strengthen the security of products and contribute to the overall security of Ubuntu
Requirements:
Detailed understanding of common security vulnerabilities and methods for mitigation
Familiarity with coordinated disclosure practices
Familiarity with open source development tools and methodologies
Proficiency in C, Python, Go, Rust, Java, Ruby, PHP, or JavaScript/TypeScript
Excellent problem-solving, troubleshooting, and decision-making skills
Effective communication with the team and community members
Experience with Linux (Debian or Ubuntu preferred)
Strong interpersonal skills, curiosity, flexibility, and accountability
Appreciation of diversity and effectiveness in a multi-cultural organization
Self-motivation and result-oriented approach