Head of Security Operations

Job Description

This is a global leadership role in cyber security where the individual will manage the Security Operations (SecOps) team at Canonical. The team is responsible for the design, implementation, and evolution of Canonical's security practices, techniques, tools, systems, and policies. They are the primary owners of strategy and practices that determine how Canonical secures its data, internal infrastructure, and build processes. The role involves assuring the security and integrity of Canonical's infrastructure and product deployments, designing and implementing technical security controls, collaborating with the Organisational Learning and Development team, and leading initiatives to integrate the team's insights into Canonical's broader software development process.What the role involves:

• Hiring and mentoring a team of outstanding technical security professionals.
• Defining Canonical's SecOps security standards and playbooks.
• Owning and driving the architecture and design of the SOC.
• Analysing and improving Canonical's security architecture.
• Evaluating, selecting and implementing new security tools and practices.
• Identifying, containing and guiding the remediation of security threats and cyber attacks.
• Growing the presence and thought leadership of Canonical SecOps practice.
• Contributing to open source threat intelligence initiatives.
• Driving threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical.
• Developing Canonical SecOps learning and development materials.
• Publishing blog posts, whitepapers and conference presentations.
• Identifying, implementing and tracking SecOps KPIs.
• Planning and delivering SecOps work in the framework of Canonical's agile engineering practice.
• Working with Security leadership to present information and influence change.

What Canonical is looking for:

• Proven track record of mitigating with advanced threat actors and nation-state threats.
• Expert technical understanding of SOCs from the ground up.
• In-depth knowledge of SOC architecture and design.
• Expertise in Linux security.
• Ability to define, implement, automate, and measure effective incident response playbooks.
• Knowledge of security architecture and market-leading security tools.
• Experience contributing to, and consuming, threat intelligence feeds.
• Experience in security risk management frameworks such as NIST CSF.
• An exceptional academic track record.
• Undergraduate degree in Computer Science or STEM.
• Drive and a track record of going above-and-beyond expectations.
• Deep personal motivation to be at the forefront of technology security.
• Leadership and management ability.
• Excellent business English writing and presentation skills.
• Confidence to report security performance metrics with accountability for accuracy and completeness.

What role offers:

• Opportunity to work in a global leadership role.
• Opportunity to manage a Security Operations team.
• Opportunity to design security practices, techniques, tools, systems, and policies.
• Opportunity to contribute to the security of the wider open source ecosystem.