Join the team redefining how the world experiences design.

Hey, g'day, mabuhay, kia ora, 你好, hallo, vítejte!

Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point.

Where and how you can work

Our flagship campus is in Sydney. We also have a campus in Melbourne and co-working spaces in Brisbane, Perth and Adelaide. But you have choice in where and how you work, we trust our Canvanauts to choose the balance that empowers them and their team to achieve their goals.

About the group/team

The Security Group is responsible for protecting Canva systems and data from information security threats. The group runs programs across Application Security, Risk Management, Enterprise Security, and Threat Detection and Response domains. Our teams work together, and with other groups, to deliver preventive and detective controls and processes that reduce security risk. 

Internal Systems Security team (ISS) helps secure our internal endpoints, networks, systems and data, used by every Canvanaut. We build and run a number of services that help run our device posture setup, secure credentials and secure our SaaS applications at scale. Additionally we partner with teams like IT, Sales and Customer Support to help build security into their roadmaps early on.

The team has to strictly balance security and user experience to make pragmatic tradeoffs every day, especially as work accelerates with AI tooling. 

Role Responsibilities:

• Managing a team of security engineers who do a mixture of threat modelling, security tool rollouts, building internal security services and partnering with other teams on security strategy. 

• Owning the strategy for internal security at Canva, balancing security, compliance and developer experience to build an experience that allows Canvanauts to move quickly, while having secure guardrails in place. 

• Coach and develop engineers by providing regular, practical feedback to help them reach their personal growth goals

• Own the team’s ways of work including sprint planning, stand-ups and retrospectives resulting in a high-performing team

• Working collaboratively with other partner groups such as IT, Sales, Customer Support and others to build security improvements that scales beyond our team. 

• Driving adoption of our systems internally, championing the benefits of what we build. 

Required Experience

• The ability to build a strategy around access that balances usability, security and compliance requirements, being flexible to changes as user patterns change. 

• Prior experience managing and growing high performing teams. 

• Proven ability to threat model complex systems, identify security risks, develop mitigation strategies with engineering teams, and see it through to delivery.

• Proven experience working with external stakeholder teams such as IT and Procurement to deliver secure SaaS solutions.

• A good understanding of the internal IT environments and the security market that surrounds them. Zero trust, IDPs, SSPM, MDMs, Password Managers and more should be topics you’ve dealt with. 

• The ability to run large, complex projects across multiple groups, set the definition of done, track metrics and deliver comms at company scale. 

Beneficial Experience (not required, but helpful)

• Proficiency in one or more programming/scripting languages, with the ability to mentor others on best practices in at least one language: Python, Golang, Java.

• Familiarity with infrastructure as code (e.g Terraform).

• Experience working with identity management technologies (MFA, SAML, WebAuthn, Okta)

• Understanding of common compliance frameworks like SOC2, ISO27001, GDPR etc. 

What's in it for you?

Achieving our crazy big goals motivates us to work hard - and we do - but you'll experience lots of moments of magic, connectivity and fun woven throughout life at Canva, too. We also offer a range of benefits to set you up for every success in and outside of work.

Here's a taste of what's on offer:

• Equity packages - we want our success to be yours too

• Inclusive parental leave policy that supports all parents & carers

• An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more

• Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally

Check out lifeatcanva.com for more info.

Other stuff to know

We make hiring decisions based on your experience, skills and passion, as well as how you can enhance Canva and our culture. When you apply, please tell us the pronouns you use and any reasonable adjustments you may need during the interview process.

We celebrate all types of skills and backgrounds at Canva so even if you don’t feel like your skills quite match what’s listed above - we still want to hear from you!

Please note that interviews are conducted virtually.