management
Posted Nov 7, 2023Head of Security Operations
at Canonical
On-site
Responsibilities
- They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated.
- Hire and mentor a team of outstanding technical security professionals
- Define Canonical's SecOps security standards and playbooks
- Own and drive the architecture and design of the SOC
- Analyse and improve Canonical's security architecture
- Evaluate, select and implement new security tools and practices
- Identify, contain and guide the remediation of security threats and cyber attacks
- Grow the presence and thought leadership of Canonical SecOps practice
- Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
- Develop Canonical SecOps learning and development materials
- Publish blog posts, whitepapers and conference presentations
- Identify, implement and track SecOps KPIs
- Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
- Proven track record of mitigating with advanced threat actors and nation state threats
- Drive and a track record of going above-and-beyond expectations
Requirements
- Candidates should have deep, hands-on expertise with a range of open source and proprietary security tooling and practices, which they can integrate into a holistic next generation security solution across the breadth of Canonical's interests.
- Expert technical understanding of SOCs from the ground up
- In depth knowledge of SOC architecture and design including strategies for logging, firewalls, network segmentation, honeypots etc
- Expert in Linux security
- Ability to define, implement, automate and measure effective incident response playbooks
- Knowledge of security architecture and market-leading security tools •
- Experience contributing to, and consuming, threat intelligence feeds •
- Experience in security risk management frameworks such as NIST CSF
- Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
- Experience in offensive or defensive security teams with hands-on ability •
- Experience with open source security tools •
- Experience with security standards such as ISO 27001 •
- Experience with security posture management of corporate endpoitns
Additional details
- This global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies.
- The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes.
- They are responsible for assuring the security and integrity of our own infrastructure and product deployments.
- requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.
- As a leader on cyber security in the company, the SecOps team manager will collaborate with our Organisational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical.
- They will operate in a wider security organisation, run a high performing security team and improve Canonical's security posture.
- They will lead initiatives to integrate the team's insights into Canonical's broader software development process.
- While this is a management position, we expect managers to be expert practitioners, able to lead by example, contribute at the highest level, and assess work based on their own professional experience and skill.
- The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem.
- They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.