Software Engineer - Cloud Security (AWS IAM/ Hashicorp Vault)

Job Description

Join the team redefining how the world experiences design.

Hey, g'day, mabuhay, kia ora, 你好, hallo, vítejte!

Thanks for stopping by. We know job hunting can be a little time-consuming and you're probably keen to find out what's on offer, so we'll get straight to the point.

Where and how you can work

Our flagship campus is in Sydney. We also have a campus in Melbourne and co-working spaces in Brisbane, Perth and Adelaide. But you have a choice in where and how you work. That means if you want to do your thing in the office (if you're near one), at home or a bit of both, it's up to you.

What you’d be doing in this role

As Canva scales change continues to be part of our DNA. But we like to think that's all part of the fun. So this will give you the flavour of the type of things you'll be working on when you start, but this will likely evolve.

About the Cloud Platform Group:

The Cloud Platform’s group mission is to reduce the complexity of using the Cloud. We’re responsible for building a platform that enables cloud adoption whilst minimising risk introduced to the business.

Our teams work together, and with other groups, to deliver cloud tooling, processes and best practices that uplift the security posture of Canva’s cloud footprint. We do this by driving operational excellence, building products that abstract the complexities of the cloud away, and by providing the most secure settings out of the box for the broader Engineering community.

About the Cloud Security & Compliance team:

The Cloud Security & Compliance team is part of the Cloud Governance sub-group and is responsible for the experience of accessing the cloud, using secrets in the cloud, and mitigating risks introduced into our cloud environments.

Our goal is to provide our development team with world-class tools to ensure workloads are secure in our AWS footprint. We achieve this by combining industry-leading third-party solutions with our own in-house developed solutions.

We work across our entire AWS footprint. As we scale, all of these areas require more sophisticated solutions to ensure that Canva developers continue to adopt the cloud without compromising on security.

Role Responsibilities:

• Being responsible for building and improving our secrets platform and tooling with exceptional quality, at a regular cadence, that impacts all Canva engineers.
• Finding solutions to accommodate our cloud security and compliance requirements, and provide better insights to our engineers.
• Being proactive in improving the user experience with compliance and advocating for best practices.
• Providing technical leadership and expertise to drive pragmatic solutions and dive into impactful design decisions.
• Participating in team ceremonies, knowledge sharing, brainstorming sessions etc.
• Becoming a security champion, evangelising the best practices and guiding other Canvanauts in the cloud security space.

Key Requirements: 

• You are proficient and happy to code in Python, Java or Golang.
• You have deep knowledge and understanding of Computer Engineering fundamentals and first principles.
• You are proficient with infrastructure-as-code, we’re a Terraform shop, but strong experience with other IaC tools will do the trick.
• You have a solid knowledge of AWS services such as EC2, EKS, Lambda, DynamoDB, RDS, S3 or equivalent Cloud provider experience.
• You have experience with cloud security tooling – having competency with AWS IAM, Config, SecurityHub and tools like Hashicorp Vault and other cloud security and compliance vendors.
• Experience building platforms offering security capabilities to the rest of the business.

What's in it for you?

Achieving our crazy big goals motivates us to work hard - and we do - but you'll experience lots of moments of magic, connectivity and fun woven throughout life at Canva, too. We also offer a stack of benefits to set you up for every success in and outside of work.

Here's a taste of what's on offer:

• Equity packages - we want our success to be yours too
• Inclusive parental leave policy that supports all parents & carers
• An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more
• Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally

Check out lifeatcanva.com for more info.

Other stuff to know

We make hiring decisions based on your experience, skills and passion, as well as how you can enhance Canva and our culture. When you apply, please tell us the pronouns you use and any reasonable adjustments you may need during the interview process.

Please note that interviews are conducted virtually.