Security Engineer - Cyber Threat Intelligence - Open to remote across ANZ
Sydney, New South Wales, Australia
At Canva, we celebrate diversity. We deeply believe that bringing together diversity of thoughts, perspectives and expression is key to building the best product, team and company. We look for many different skills and abilities, as well as how you can enhance Canva and our culture. So, even if you don’t think you quite meet all of the skills listed or tick all the boxes, we’d still love to hear from you!
Our mission at Canva is to empower the world to design and since launching in 2013, we have grown exponentially, amassing over 75 million monthly active users across 190 different countries and a team of over 2,800 people… and the best bit is that we’ve only achieved 1% of what we know we’re capable of.
Join us and design your future.
About the Security Group The Security Group is responsible for protecting Canva systems and data from information security threats. Our teams work together, and with other groups, to deliver preventive and detective controls and processes that reduce security risk. The group runs programs across Identity and Access Management, Application Security, Risk Management, and Threat Detection and Response domains.
About our CTI team
Canva's Security Group is growing at a rocket ship pace. The CTI team is hiring so we can continue to support the group's security goals to keep Canva and our customers safe.
This role is open to remote applicants across ANZ!
What you'll be doing!
- Assist in managing intelligence requirements and maintaining intelligence collection and sharing infrastructure
- Assist in the creation and tuning of intelligence alerting rules
- Assess the threat landscape daily, resulting in the production of actionable intelligence reports for audiences of varying technical expertise
- Production of strategic intelligence reports
- Actively monitor clear, deep and dark web sources to identify targeted threats against Canva
- Independently research identified observables to determine validity, confidence and risk ratings
- Assist the Incident Response, Application Security, Fraud and Detection Engineering teams to understand adversary behaviours and capabilities; including providing context for vulnerabilities and potential threats identified internally
- Support internal security awareness and education initiatives
What you'll bring to the role!
- A curious detective mindset and be driven to solve ambiguous problems with simple solutions
- In-depth knowledge of the cyber threat intelligence lifecycle and intelligence reporting
- Experience with common threat intelligence platforms, including intelligence collection and sharing infrastructure
- Strong documentation, communication, and stakeholder management skills; the ability to work alongside technical and non-technical colleagues
- Exposure to the cloud! Ideally AWS, but GCP or Azure would be completely fine!
- The ability to work in a self-directed environment
- High-level familiarity with a modern programming or scripting language (Python, Java, Golang, etc.) would be a plus
- Previous experience in Security - Engineering, Operations, Incident Response, Analysis, Insider Threat or Threat Research is a bonus, but not a hard requirement
- Prior commercial experience in a Systems or Software Engineering role is also a bonus, but not a requirement
What is exciting about this role?
- Working with an awesome team comprised of diverse and talented security engineers
- Working in a rapidly growing environment in a company that uses the latest tech; getting to solve interesting and complex problems as a result
- Great team culture of inclusivity and fun!
Our culture is unlike anywhere else and we design your #CanvaLife experience to empower you to do the best work of your life.
Whether you’re in the office, working from home or choosing your own adventure, our benefits for permanent Canvanauts include:
• Equity packages for you to truly be a part of the Canva journey. Hybrid work model (in-office & from home) coming together for 8 days a year. • Flexible leave so you can recharge, give back, support others or focus on your own professional development. • Inclusive parental leave policy that supports all parents and carers throughout their parenting and caring journey. • An annual Vibe & Thrive allowance. This is for you to spend on whatever will support your wellbeing and development.. because you know what you need to Vibe and Thrive, better than anyone. • Virtual and in-office wellness benefits including Canva University, Employee Assistant Programs and Fitness & Meditation Classes. • Canva For Good program matching your not-for-profit donations, Force for Good leave (3 paid volunteering days) and a range of sustainability and ethical initiatives to get involved in.
We make hiring decisions based on your experience, skills and passion. Please note that interviews are conducted virtually. When you apply, please tell us the pronouns you use and any reasonable adjustments you may need during the interview process.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS Azure Cloud GCP Golang Incident response Java Nonprofit Python Risk management Scripting Threat detection Threat intelligence Threat Research Vulnerabilities
Perks/benefits: Fitness / gym Flex hours Parental leave Salary bonus Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs