3 407 Information Security jobs in Bahrain

As the most widely used Linux distribution, Ubuntu underpins the security of the entire internet. The role of Security Engineering Manager directly impacts the safety and security of millions of users worldwide. Join a team of security experts dedicated to protecting the open-source ecosystem and driving innovation. Your leadership will be instrumental in addressing emerging threats, developing robust security measures, and ensuring the continued integrity of Ubuntu. This is an opportunity to make a tangible difference and leave a lasting legacy on the digital landscape.

As we place ever more trust in software and data security in our increasingly connected world, Canonical's mission to deliver the world's best open source platform comes with a responsibility: to set the highest possible standard for software security, not only for the OS, but also for the wide range of open source infrastructure and software that developers enjoy within the Ubuntu ecosystem. With Canonical's Ubuntu being the leading open source platform for large-scale cloud and edge deployments, we are increasingly called upon to help customers meet strict security requirements such as FIPS, CIS, STIG, FedRAMP and the new CRA.

This role is about leading the charge to set the security standards for open source software across the Ubuntu platform, from desktops, servers and edge devices to cloud infrastructure, Kubernetes and OpenStack, by certifying core components to meet industry standards and guiding development teams across the company in security best practices. We work primarily within the areas of cryptographic modules (FIPS 140) and system hardening, where we collaborate with industry partners including CIS and DISA to define and build secure operating system deployments.

An Engineering Manager is responsible for line management and career guidance. The ability to develop engineering talent, to represent your team and product from a technical perspective, and to drive collaboration with other teams and customers are all critical to success in this role.

What you will do in this role

• Lead and develop a team of engineers, ranging from graduate to senior
• Coach, mentor, and offer career development feedback
• Identify and measure team health indicators
• Implement disciplined engineering processes
• Represent your team and product to stakeholders, partners, and customers
• Develop and evangelise great engineering and organisational practices
• Plan and manage progress on agreed goals and projects
• Support our products and customers to meet strict product security requirements such as FIPS, CIS, STIG, FedRAMP and the new CRA
• Support the work addressing specific cryptography modules (FIPS 140) and system hardening efforts with indrustry partners, including CIS and DISA
  
  

• An exceptional academic track record from both high school and university
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive, and a track record of going above-and-beyond expectations
• Excellent verbal and written communication skills in English
• A love of developing and growing people and a track record of it
• Organised and able to ensure your team delivers timely, high quality results
• Professional manner interacting with colleagues, partners, and community
• Prior experience working on FIPS/Common Criteria certified products and in-depth knowledge of the underlying standards
• Prior experience working directly with DISA-STIG or CIS benchmarks, including related audit + remediation tooling (e.g. Compliance as Code)
• Knowledgeable and passionate about software and application security
• Solid experience working in an agile development environment
• A demonstrated drive for continual learning
• Builds trust, relationships and confidence
• Result-oriented, with a personal drive to meet commitments
• Ability to travel twice a year, for company events up to two weeks each
  
  

• Hands-on domain knowledge of Linux cryptography libraries (OpenSSL, GnuTLS)
  
  

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events
  
  

The Threat Intelligence Lead will own Canonical's threat intelligence strategy and execution, including understanding of which cyber threat actors are targeting Canonical, and the use of intelligence on Tactics, Techniques and Procedures (TTP) to better our products and internal cybersecurity controls. You will collaborate with internal stakeholders as well as with the wider cybersecurity community, making sure that Canonical is recognised as a thought leader on open source threat intelligence.

This role will report to the CISO.

You will lead intelligence gathering and development activities on threat actors targeting software supply chains. You'll study attack trends across the wider open source software landscape, report findings to internal security teams, and advise the wider engineering community on the best course of action to detect and mitigate possible threats.

As the publisher of Ubuntu, Canonical products are directly or indirectly present in almost every organisation and household in the world, making them a prime target for threat actors. This team's mission is to help Canonical, and by extension countless community members and companies around the world, secure their software infrastructure.

What you'll do in this role

• Build and own Canonical's threat intelligence strategy
• Build and maintain OSINT research environments
• Develop OSINT tradecraft, principals, and techniques
• Identify and track targeted intrusion cyber threats, trends, and new developments by cyber threat actors through analysis of proprietary and open source datasets
• Collaborate across teams to inform on activity of interest
• Coordinate adversary/campaign tracking
• Contribute to the wider threat intelligence community, establishing Canonical as a key contributor and thought leader in the space
• Work with product and engineering teams to explain cybersecurity threats and advise on mitigation strategies
• Work with the OPSEC and IS team to help implement/update security controls prioritising cyber defence
• Identify intelligence gaps and propose new tools and research projects to fill them
• Conduct briefings for executives, internal stakeholders and external customers
  
  

• An experienced threat intelligence leader (or similar)
• Knowledgeable about the current open source threat landscape and computer networking/infrastructure concepts
• Highly competent with OSINT tools (e.g., Buscador, Trace Labs OSINT VM, OSINT Framework, Maltego, Shodan, social media scraping tools, etc.)
• Able to identify, organise, catalogue, and track adversary tradecraft trends — often with incomplete data
• Experienced using threat intelligence data to influence enterprise architecture or product development decisions
• An excellent communicator with the ability to clearly articulate and tailor technical content to a variety of audiences
• Able to travel twice a year, for company events up to two weeks long
  
  

• A professional portfolio of OSINT related scripts, tools, or frameworks
• Demonstrated involvement in the larger OSINT community (please share relevant links)
• Degree qualified, with a bachelor's degree in computer science, information security, or a related field
• Certifications in related areas (e.g. GOSI, SANS SEC487 & SEC587, IntelTechniques OSIP, etc)
• Experience in a tech company or government/military signal intelligence departments
  
  

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events
  
  

Join to apply for the Linux Cryptography and Security Engineer role at Canonical

3 days ago Be among the first 25 applicants

Join to apply for the Linux Cryptography and Security Engineer role at Canonical

This is a unique opportunity to use your software engineering and cryptography skills to build and maintain the security foundation that enables Ubuntu and its users to operate securely and remain compliant to international information security standards such as FIPS 140-3 and Common Criteria. You will use your applied cryptography, Linux Security, and coding skills to enhance the Ubuntu distribution and work with organizations such as DISA and CIS to draft and implement security hardening benchmarks for Ubuntu.

As a member of the Security Hardening team you will work with and develop automation tooling to audit deployed systems for DISA-STIG and CIS benchmark compliance. You will interact with internal and external stakeholders to identify gaps in our frameworks, and develop new solutions to address these challenges. In this role you will have the opportunity to influence team and security culture, facilitate technical delivery, and help drive team direction and execution. You'll collaborate closely with Canonical's kernel team as well as the wider engineering organization to drive features impacting all Ubuntu users.

Day-to-day responsibilities

• Collaborate with other engineers in the Security Hardening team to achieve and retain various Security certifications
• Extend and enhance Linux cryptographic components (OpenSSL, Libgcrypt, GnuTLS, and others) with the features and functionality required for FIPS and CC certification
• Collaborate with external security consultants to test and validate kernel and crypto module components
• Work with external partners to develop security hardening benchmarks and audit + remediation automation for Ubuntu
• Contribute to Ubuntu mainline and upstream projects to land solutions and benefit the community
• Communication and collaboration within and outside Canonical to identify opportunities to improve our security posture, rapidly resolve issues, and deliver high-quality solutions on schedule
  
  

• Hands-on experience with low-level Linux cryptography APIs and debugging
• Excellent software engineering fundamentals, including prior experience with C development, and the ability to demonstrate such
• Hands-on experience with Linux system administration and shell scripting
• Demonstrated knowledge of security and cryptography fundamentals + direct experience writing secure code and implementing best practices
• Significant development experience working with open source libraries
• Excellent verbal and written communications to enable efficient collaboration with internal and external partners in a remote-first environment
  
  

• Prior experience working on FIPS/Common Criteria certified products and in-depth knowledge of the underlying standards
• Prior experience working directly with DISA-STIG or CIS benchmarks, including related audit + remediation tooling (e.g. Compliance as Code)
• Experience working directly with Linux Kernel
• Prior experience with Python, OVAL (Open Vulnerability Assessment Language), and Ansible
• History of contributions to open source projects
  
  

• Distributed work environment with twice-yearly team sprints in person - we've been working remotely since 2004!
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues from your team and others
• Priority Pass for travel and travel upgrades for long haul company events
  
  

• Seniority level Entry level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

Manama, Capital Governorate, Bahrain 4 months ago

Manama, Capital Governorate, Bahrain 1 month ago

Bahrain $60,000.00-$120,000.00 1 month ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 3 weeks ago

Manama, Capital Governorate, Bahrain 2 months ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 5 months ago

Manama, Capital Governorate, Bahrain 6 months ago

Seef, Capital Governorate, Bahrain 4 weeks ago

Manama, Capital Governorate, Bahrain 2 months ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 1 month ago

Manama, Capital Governorate, Bahrain 2 months ago

Manama, Capital Governorate, Bahrain 5 months ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 3 weeks ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 2 months ago

Manama, Capital Governorate, Bahrain 1 month ago

Manama, Capital Governorate, Bahrain 1 month ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 4 months ago

Manama, Capital Governorate, Bahrain 6 months ago

Manama, Capital Governorate, Bahrain 2 months ago

Manama, Capital Governorate, Bahrain 4 months ago

Manama, Capital Governorate, Bahrain 2 months ago

Manama, Capital Governorate, Bahrain 4 months ago

Manama, Capital Governorate, Bahrain 2 months ago

Manama, Capital Governorate, Bahrain 3 days ago

Manama, Capital Governorate, Bahrain 4 months ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Full Time

Job Purpose

The IT Compliance & Risk Lead is responsible for the assessment of technology vendor risks and control effectiveness across the IT disciplines. The IT Risk lead will identify, classify, and document control issues in the

This is a unique opportunity to use your software engineering and cryptography skills to build and maintain the security foundation that enables Ubuntu and its users to operate securely and remain compliant with international information security standards such as FIPS 140-3 and Common Criteria.

You will use your applied cryptography, Linux Security, and coding skills to enhance the Ubuntu distribution and work with organizations such as DISA and CIS to draft and implement security hardening benchmarks for Ubuntu.

As a member of the Security Hardening team, you will develop automation tooling to audit deployed systems for DISA-STIG and CIS benchmark compliance, collaborate with internal and external stakeholders to identify gaps, and develop solutions to address these challenges. You will influence team and security culture, facilitate technical delivery, and collaborate closely with Canonical's kernel team and the wider engineering organization to drive features impacting all Ubuntu users.

1. Collaborate with other engineers in the Security Hardening team to achieve and retain various security certifications.
2. Extend and enhance Linux cryptographic components (OpenSSL, Libgcrypt, GnuTLS, and others) for FIPS and CC certification.
3. Work with external security consultants to test and validate kernel and crypto module components.
4. Develop security hardening benchmarks and automate audit + remediation processes for Ubuntu with external partners.
5. Contribute to Ubuntu mainline and upstream projects to benefit the community.
6. Communicate and collaborate within and outside Canonical to improve security, resolve issues, and deliver solutions.

• Hands-on experience with low-level Linux cryptography APIs and debugging.
• Strong software engineering fundamentals, including experience with C development.
• Experience with Linux system administration and shell scripting.
• Knowledge of security and cryptography fundamentals, with experience in writing secure code.
• Development experience with open source libraries.
• Excellent communication skills for remote collaboration.

• Experience with FIPS/Common Criteria certified products and standards.
• Experience with DISA-STIG or CIS benchmarks and audit tooling.
• Experience with Linux Kernel development.
• Knowledge of Python, OVAL, and Ansible.
• Contributions to open source projects.

We offer competitive compensation considering location, experience, and performance, with annual reviews and bonuses. Benefits include a personal learning budget, remote work environment, travel opportunities, and more.

Canonical is a leader in open source, publishing Ubuntu, and fostering innovation in AI, IoT, and cloud computing. We are a remote-first company committed to diversity and excellence.

Canonical is an equal opportunity employer, welcoming applications from all backgrounds.

Job purpose

• Overseeing information security, cybersecurity and IT risk management programs based on industry-accepted information security and risk management frameworks.
• Responsible for the organization's data privacy and protection function to ensure compliance with various regulations and best practices.

2. Primary Duties Performed

• Develop and maintain the cybersecurity Risk Management Framework of the organization for addressing the overall approach for handling cybersecurity risks and managing them in a methodological manner.

• Evaluate employees' information security awareness and provide the necessary training whenever is needed.

• Conduct frequent reviews on Vulnerability Assessment and Penetration Testing (VAPT) and manage vulnerabilities.

• Define the necessary controls to ensure all regulatory requirements related to cybersecurity are met, designed effectively with clear documentation.

• Identify the critical assets of the organization and ensure implementation of risk identification and management strategies for these critical assets.
• To assess technology projects to ensure that cybersecurity is adequately addressed.
• Responsible to identifying and managing cybersecurity risk for all third-party technology engagements and all cloud computing engagements.
• Evaluates and recommends cybersecurity technologies and solutions.
• Review cybersecurity & Risk Management manual and recommend necessary updates.
• Act as Data Protection Officer to identify and evaluate the Company's data processing activities.
• Monitor data management procedures and compliance within the Company.
• Assess Company compliance with Data Protection Private Law.
• Provide advice and arrange training to employees on Data Protection.
• Review and recommend updates on Data Protection Manual.
• Serve as the point of contact between the company and the data protection authorities.
• Performs other related duties assigned by the department head.

3. Secondary Duties Performed

• Assist in implementing risk management framework, policies and programs covering business, financial, operational, technological, and regulatory risks.
• Assist in the development and management of controls and business contingency plans.
• Maintain and update organizational risk register.
• Oversee the regular validation and testing of the Company Business Continuity Plan.
• Review Risk Management manual and recommend necessary updates.

4. Work & Business Contacts

Internal

• Management team and staff.

External

• Regulatory Bodies: Central

VAM Systems is a Business Consulting, IT Solutions and Services company.

VAM Systems is currently looking for Security Architect for our Bahrain operations with the following skillsets & terms and conditions:

Years of Experience: 11-15 Years

Education Qualification: BE Computer Science and Engineering

Certifications required: CISSP, CCSP, CEH, CCNP, AWS, Azure, Java, Python, VB

Professional Training Required: Azure Solutions Architect, AWS Solution Architect, Secure Software Development and Programming.

Skills:

• Proficiency and working knowledge in technology stacks used in application development, especially secure application design.
• Depth knowledge of IT risks, cyber security, and computer operating software like Windows, Linux, and UNIX.
• In-depth knowledge in software design with the aid of programming languages like Python, Java, etc.
• Advanced understanding of security protocols, cryptography, and security.
• Understanding of network protocols, Source Code Reviews, and OWASP Top 10 security practices.
• In-depth knowledge of frameworks used in developing applications.
• Good understanding of security measures such as firewalls, intrusion detection, and prevention systems (IDS/IPS), network access controls, and network segmentation.
• Knowledge of DNS, security principles of routing, authentication, VPN, proxy services, and DDoS mitigation technology.
• Expertise in the architecture of information security systems.
• Good knowledge of IT Infrastructure, Cloud Technologies like AWS, Azure, and Information Security systems, specifically in architecture.

Job Responsibilities:

• Perform security analysis, develop robust security architecture, and integrate security solutions into the

Bachelor of Technology/Engineering(Computers)

Nationality

Any Nationality

Vacancy

1 Vacancy

Job Description

Job Purpose

The Senior Security Architect will play a key role in building and maintaining IT security solutions and controls for the

Job Purpose

The Senior Security Architect will play a key role in building and maintaining IT security solutions and controls for the