We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest an engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.

Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team.

The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role:

• Implement and evolve Canonical's SecOps security standards and playbooks
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change

What we are looking for

• An exceptional academic track record 
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Expertise in threat modelling and risk management frameworks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF
• Experience with security standards such as ISO 27001

Optional things we value

• Experience in a security operations team or a security operations centre (SOC)
• Experience in offensive or defensive security teams with hands-on ability
• Experience with state-actor and other advanced persistent threats

What we offer you

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004.​ Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

#LI-remote

The Threat Intelligence Lead will own Canonical’s threat intelligence strategy and execution, including understanding of which cyber threat actors are targeting Canonical, and the use of intelligence on Tactics, Techniques and Procedures (TTP) to better our products and internal cybersecurity controls. You will collaborate with internal stakeholders as well as with the wider cybersecurity community, making sure that Canonical is recognised as a thought leader on open source threat intelligence.

This role will report to the CISO.

You will lead intelligence gathering and development activities on threat actors targeting software supply chains. You'll study attack trends across the wider open source software landscape, report findings to internal security teams, and advise the wider engineering community on the best course of action to detect and mitigate possible threats.

As the publisher of Ubuntu, Canonical products are directly or indirectly present in almost every organisation and household in the world, making them a prime target for threat actors. This team's mission is to help Canonical, and by extension countless community members and companies around the world, secure their software infrastructure.

What you’ll do in this role

• Build and own Canonical’s threat intelligence strategy
• Build and maintain OSINT research environments
• Develop OSINT tradecraft, principals, and techniques
• Identify and track targeted intrusion cyber threats, trends, and new developments by cyber threat actors through analysis of proprietary and open source datasets 
• Collaborate across teams to inform on activity of interest
• Coordinate adversary/campaign tracking
• Contribute to the wider threat intelligence community, establishing Canonical as a key contributor and thought leader in the space
• Work with product and engineering teams to explain cybersecurity threats and advise on mitigation strategies
• Work with the OPSEC and IS team to help implement/update security controls prioritising cyber defence
• Identify intelligence gaps and propose new tools and research projects to fill them
• Conduct briefings for executives, internal stakeholders and external customers

The successful Threat Intelligence Lead will be

• An experienced threat intelligence leader (or similar)
• Knowledgeable about the current open source threat landscape and computer networking/infrastructure concepts
• Highly competent with OSINT tools (e.g., Buscador, Trace Labs OSINT VM, OSINT Framework, Maltego, Shodan, social media scraping tools, etc.)
• Able to identify, organise, catalogue, and track adversary tradecraft trends — often with incomplete data
• Experienced using threat intelligence data to influence enterprise architecture or product development decisions
• An excellent communicator with the ability to clearly articulate and tailor technical content to a variety of audiences
• Able to travel twice a year, for company events up to two weeks long

Desired Characteristics

• A professional portfolio of OSINT related scripts, tools, or frameworks
• Demonstrated involvement in the larger OSINT community (please share relevant links)
• Degree qualified, with a bachelor's degree in computer science, information security, or a related field
• Certifications in related areas (e.g. GOSI, SANS SEC487 & SEC587, IntelTechniques OSIP, etc)
• Experience in a tech company or government/military signal intelligence departments

What we offer you

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004.​ Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

#LI-remote

This global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

As a leader on cyber security in the company, the SecOps team manager will collaborate with our Organisational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical. They will operate in a wider security organisation, run a high performing security team and improve Canonical's security posture. They will lead initiatives to integrate the team's insights into Canonical's broader software development process.

While this is a management position, we expect managers to be expert practitioners, able to lead by example, contribute at the highest level, and assess work based on their own professional experience and skill. Candidates should have deep, hands-on expertise with a range of open source and proprietary security tooling and practices, which they can integrate into a holistic next generation security solution across the breadth of Canonical's interests.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

This role reports to the CISO.

What you will do in this role:

• Hire and mentor a team of outstanding technical security professionals
• Define Canonical's SecOps security standards and playbooks
• Own and drive the architecture and design of the SOC
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change

What we are looking for

• Proven track record of mitigating with advanced threat actors and nation state threats
• Expert technical understanding of SOCs from the ground up
• In depth knowledge of SOC architecture and design including strategies for logging, firewalls, network segmentation, honeypots etc
• Someone who understands how the SOC works not just how to use it
• Expert in Linux security
• Ability to define, implement, automate and measure effective incident response playbooks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF
• An exceptional academic track record from both high school and university
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Leadership and management ability
• Excellent business English writing and presentation skills
• Confidence to report security performance metrics with accountability for accuracy and completeness

Optional things we value

• Experience in offensive or defensive security teams with hands-on ability
• Experience with open source security tools
• Experience with security standards such as ISO 27001 
• Experience with security posture management of corporate endpoitns

Who We Are:

Kindo, the AI-Native Security and Infrastructure Automation Platform, is growing fast! We're looking for a sharp, execution-oriented Account Executive to help drive pipeline growth and close high-impact deals across enterprise and mid-market accounts. As one of Kindo’s early sales hires, you’ll play a critical role in landing new customers, shaping our go-to-market motion, and accelerating adoption of our AI-powered security platform.

The ideal candidate is an AI-first seller who understands how to run modern, outbound-driven sales cycles with clarity and precision. You’ll prospect into CIOs, CTOs, CISOs and DevSecOps leaders, navigate complex orgs, and close six-figure deals that solve real infrastructure and security challenges. You should be comfortable owning a full pipeline, building relationships, managing sales cycles, and delivering real business outcomes.

Strong communication, high standards, and a sense of urgency are a must. Experience in a quota-carrying role at an early-growth cybersecurity or AI startup is a huge bonus.

This role is a high-impact opportunity for someone looking to grow with a team that’s building for what’s next. You’ll sharpen your sales game, sell into a market that’s changing fast, and work with a product that actually delivers. It will be challenging and rewarding.

Position Overview:

As an Account Executive reporting to our VP of Sales, you’ll help drive top-line growth by owning the full sales cycle and bringing in new business. This is a quota-carrying role focused on landing enterprise and upper mid-market customers, with strong support from leadership, product, and marketing.

You’ll sell into the C Suite, security teams, and engineering leadership, helping them adopt AI-powered security workflows that reduce risk and accelerate delivery. The ideal candidate has a track record of exceeding $1M+ quotas, working complex sales cycles, and building lasting customer relationships. If you’re looking to join a fast-growing team and close meaningful deals, we want to meet you.

Responsibilities:

• Prospect and close net new logos in the Enterprise space (Fortune 1000 customers as well as SMBs).
• Drive $100K+ average deal sizes with a focus on high-value business outcomes promoting long-term relationships.
• Work both direct and channel sales motions, leveraging existing industry relationships.
• Develop and execute a territory plan targeting specific geographic regions
• Act as a trusted advisor to CISOs, CIOs, CTOs, VP Engineering and leaders within DevSecOps, helping them implement AI-driven security automation.
• Collaborate cross-functionally with marketing, product, and engineering teams to refine messaging and positioning.
• Leverage your network and bring warm introductions to enterprise accounts.
• Operate in a fast-paced, high-growth environment where adaptability and resilience are key.
• Receive coaching and mentorship from industry-leading executives and second-time founders who have already had a successful exit.

Required Qualifications:

• 3-5+ years of experience in cybersecurity sales, with a strong track record of success.
• Experience selling SOAR, SIEM, Cloud Security is highly desirable, but candidates with cybersecurity vendor experience will be considered.
• Proven ability to meet and exceed $1M+ quotas.
• Expertise in outbound prospecting, pipeline development, and enterprise deal execution.
• Ability to communicate complex security concepts in a clear, business-oriented way.
• Relevant in-territory channel relationships.
• Strong understanding of security operations, DevSecOps, and compliance challenges.
• Resilient, self-motivated, and driven by success.
• Talented candidates based in the U.S. are encouraged to apply, particularly those in Northeast, Southeast, Texas, Pacific Northwest, Northern California, Southern California, and the Mid-Atlantic regions.

Preferred Qualifications:

• Experience working at a high-growth startup or early-stage security vendor.
• Familiarity with AI/ML/GenAI applications in security automation.
• Previous experience selling to C-Suite(CIOs, CTO, CISO) and security leadership teams.
• Proven track record of value based selling, aka the ability to translate the technical benefits into business outcomes that a CFO would sign off on.

What We Offer:

• Competitive equity package for early employees.
• Comprehensive health, dental, and vision insurance.
• Unlimited vacation and paid time off policies.
• Opportunity to work with world-class leadership in cybersecurity and AI.
• Fast-paced, entrepreneurial startup environment with a strong culture of ownership and innovation.

Company Culture:

• High-performance mindset: We set ambitious goals and work with urgency.
• Extreme ownership: Everyone is responsible for their domain and takes pride in delivering results.
• Fast-paced and action-oriented: We prioritize speed and execution over perfection.
• Collaboration and innovation: We challenge each other, share insights, and push boundaries.
• Customer obsession: Everything we do is about making our customers successful.

Compensation
Strong 50/50 base and commission split, with base salary in the $140K–$160K range and generous upside potential. Includes early-employee equity with meaningful ownership in a high-growth AI startup.

If you're a top-performing cybersecurity sales professional looking for your next big opportunity, we want to hear from you. Apply now and be part of building the future of AI-driven security!