Senior Security Engineer - Incident Response
Job Description
Join the team redefining how the world experiences design.
Hiya, g'day, mabuhay, kia ora, 你好, hallo, vítejte!
Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point.
Where and how you can work
The buzzing Canva London campus features several buildings around beautiful leafy Hoxton Square in Shoreditch. While our global headquarters is in Sydney, Australia, London is our HQ for Europe, with all kinds of teams based here, plus event spaces to gather our team and communities. You'll experience a warm welcome from our Vibe team at front of house, amazing home cooked food from our Head Chef and a variety of workspaces to hang out with your team mates or get solo work done. That said, we trust our Canvanauts to choose the balance that empowers them and their team to achieve their goals and so you have choice in where and how you work.
What you’d be doing in this role
As Canva scales change continues to be part of our DNA. But we like to think that's all part of the fun. So this will give you the flavour of the type of things you'll be working on when you start, but this will likely evolve.
At the moment, this role is focused on:
Leading incident response coordination and acting as escalation point for security incidents across Canva's cloud-native infrastructure, including participation in the on-call roster
Monitoring and investigating security threats across AWS, GCP, and hybrid environments, proactively hunting for anomalous behavior and potential intrusions
Building and maintaining detection rules, automation workflows, and response playbooks using detection-as-code methodologies
Developing tools and solutions for security incident alerting, management, and communication that prevent incident recurrence
Maintaining comprehensive incident response documentation, lead post-incident reviews, and produce detailed incident reports
Championing security best practices across secure development, network security, and security operations
Contributing to strategic projects that enhance the organization's overall
You're probably a match if
You have demonstrable experience in incident response, security operations, and coordinating security events from detection through resolution
You possess strong knowledge of cloud security architectures, attack techniques, and hands-on experience with cloud providers (AWS, GCP, or Azure)
You've worked extensively with endpoint detection and response (EDR) platforms for investigations, analysis, and response actions
You have an investigative mindset with ability to leverage OSINT techniques and solve ambiguous security problems with elegant solutions
You excel at documentation, communication, and stakeholder management while effectively prioritizing multiple tasks in a dynamic, fast-paced environment
You understand the role of security within the organization and apply risk-based decision making to security operations
You're comfortable working with Linux, macOS, and modern security tooling
Beneficial experience (not required, but helpful)
Background in forensic acquisition and analysis, including maintaining chain of custody
Incident response in containerized and Kubernetes environments
Ability to perform static and dynamic malware analysis
Proficiency in scripting and programming languages (Python, Go, or similar)
Experience with security automation platforms and SOAR tools
Familiarity with detection-as-code practices and version control workflows
Knowledge of MITRE ATT&CK framework and threat intelligence platforms
About the team
The Security Group is responsible for protecting Canva systems and data from information security threats. Our teams work together, and with other groups, to deliver preventive and detective controls and processes that reduce security risk. The group runs programs across Enterprise Security, Application Security, Risk Management, and Threat Detection and Response domains.
The Detection and Response team leads Canva's understanding of the threats we face, continuously improves our ability to detect relevant threat actor activity, and leads the company's response to potential intrusions.
What's in it for you?
Achieving our crazy big goals motivates us to work hard - and we do - but you'll experience lots of moments of magic, connectivity and fun woven throughout life at Canva, too. We also offer a range of benefits to set you up for every success in and outside of work.
Here's a taste of what's on offer:
Equity packages - we want our success to be yours too
Inclusive parental leave policy that supports all parents & carers
An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more
Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally
Check out lifeatcanva.com for more info.
Other stuff to know
We make hiring decisions based on your experience, skills and passion, as well as how you can enhance Canva and our culture. When you apply, please tell us the pronouns you use and any reasonable adjustments you may need during the interview process.
We celebrate all types of skills and backgrounds at Canva so even if you don’t feel like your skills quite match what’s listed above - we still want to hear from you!
Please note that interviews are conducted virtually.
About the job
Apply for this position
Senior Security Engineer - Incident Response
Job Description
Join the team redefining how the world experiences design.
Hiya, g'day, mabuhay, kia ora, 你好, hallo, vítejte!
Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point.
Where and how you can work
The buzzing Canva London campus features several buildings around beautiful leafy Hoxton Square in Shoreditch. While our global headquarters is in Sydney, Australia, London is our HQ for Europe, with all kinds of teams based here, plus event spaces to gather our team and communities. You'll experience a warm welcome from our Vibe team at front of house, amazing home cooked food from our Head Chef and a variety of workspaces to hang out with your team mates or get solo work done. That said, we trust our Canvanauts to choose the balance that empowers them and their team to achieve their goals and so you have choice in where and how you work.
What you’d be doing in this role
As Canva scales change continues to be part of our DNA. But we like to think that's all part of the fun. So this will give you the flavour of the type of things you'll be working on when you start, but this will likely evolve.
At the moment, this role is focused on:
Leading incident response coordination and acting as escalation point for security incidents across Canva's cloud-native infrastructure, including participation in the on-call roster
Monitoring and investigating security threats across AWS, GCP, and hybrid environments, proactively hunting for anomalous behavior and potential intrusions
Building and maintaining detection rules, automation workflows, and response playbooks using detection-as-code methodologies
Developing tools and solutions for security incident alerting, management, and communication that prevent incident recurrence
Maintaining comprehensive incident response documentation, lead post-incident reviews, and produce detailed incident reports
Championing security best practices across secure development, network security, and security operations
Contributing to strategic projects that enhance the organization's overall
You're probably a match if
You have demonstrable experience in incident response, security operations, and coordinating security events from detection through resolution
You possess strong knowledge of cloud security architectures, attack techniques, and hands-on experience with cloud providers (AWS, GCP, or Azure)
You've worked extensively with endpoint detection and response (EDR) platforms for investigations, analysis, and response actions
You have an investigative mindset with ability to leverage OSINT techniques and solve ambiguous security problems with elegant solutions
You excel at documentation, communication, and stakeholder management while effectively prioritizing multiple tasks in a dynamic, fast-paced environment
You understand the role of security within the organization and apply risk-based decision making to security operations
You're comfortable working with Linux, macOS, and modern security tooling
Beneficial experience (not required, but helpful)
Background in forensic acquisition and analysis, including maintaining chain of custody
Incident response in containerized and Kubernetes environments
Ability to perform static and dynamic malware analysis
Proficiency in scripting and programming languages (Python, Go, or similar)
Experience with security automation platforms and SOAR tools
Familiarity with detection-as-code practices and version control workflows
Knowledge of MITRE ATT&CK framework and threat intelligence platforms
About the team
The Security Group is responsible for protecting Canva systems and data from information security threats. Our teams work together, and with other groups, to deliver preventive and detective controls and processes that reduce security risk. The group runs programs across Enterprise Security, Application Security, Risk Management, and Threat Detection and Response domains.
The Detection and Response team leads Canva's understanding of the threats we face, continuously improves our ability to detect relevant threat actor activity, and leads the company's response to potential intrusions.
What's in it for you?
Achieving our crazy big goals motivates us to work hard - and we do - but you'll experience lots of moments of magic, connectivity and fun woven throughout life at Canva, too. We also offer a range of benefits to set you up for every success in and outside of work.
Here's a taste of what's on offer:
Equity packages - we want our success to be yours too
Inclusive parental leave policy that supports all parents & carers
An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more
Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally
Check out lifeatcanva.com for more info.
Other stuff to know
We make hiring decisions based on your experience, skills and passion, as well as how you can enhance Canva and our culture. When you apply, please tell us the pronouns you use and any reasonable adjustments you may need during the interview process.
We celebrate all types of skills and backgrounds at Canva so even if you don’t feel like your skills quite match what’s listed above - we still want to hear from you!
Please note that interviews are conducted virtually.