Software Engineer - Cloud Security (AWS IAM/ Hashicorp Vault)
Sydney, Australia
Job Description
Join the team redefining how the world experiences design.
Hey, g'day, mabuhay, kia ora, 你好, hallo, vítejte!
Thanks for stopping by. We know job hunting can be a little time-consuming and you're probably keen to find out what's on offer, so we'll get straight to the point.
Where and how you can work
Our flagship campus is in Sydney. We also have a campus in Melbourne and co-working spaces in Brisbane, Perth and Adelaide. But you have a choice in where and how you work. That means if you want to do your thing in the office (if you're near one), at home or a bit of both, it's up to you.
What you’d be doing in this role
As Canva scales change continues to be part of our DNA. But we like to think that's all part of the fun. So this will give you the flavour of the type of things you'll be working on when you start, but this will likely evolve.
About the Cloud Platform Group:
The Cloud Platform’s group mission is to reduce the complexity of using the Cloud. We’re responsible for building a platform that enables cloud adoption whilst minimising risk introduced to the business.
Our teams work together, and with other groups, to deliver cloud tooling, processes and best practices that uplift the security posture of Canva’s cloud footprint. We do this by driving operational excellence, building products that abstract the complexities of the cloud away, and by providing the most secure settings out of the box for the broader Engineering community.
About the Cloud Security & Compliance team:
The Cloud Security & Compliance team is part of the Cloud Governance sub-group and is responsible for the experience of accessing the cloud, using secrets in the cloud, and mitigating risks introduced into our cloud environments.
Our goal is to provide our development team with world-class tools to ensure workloads are secure in our AWS footprint. We achieve this by combining industry-leading third-party solutions with our own in-house developed solutions.
We work across our entire AWS footprint. As we scale, all of these areas require more sophisticated solutions to ensure that Canva developers continue to adopt the cloud without compromising on security.
Role Responsibilities:
- Being responsible for building and improving our secrets platform and tooling with exceptional quality, at a regular cadence, that impacts all Canva engineers.
- Finding solutions to accommodate our cloud security and compliance requirements, and provide better insights to our engineers.
- Being proactive in improving the user experience with compliance and advocating for best practices.
- Providing technical leadership and expertise to drive pragmatic solutions and dive into impactful design decisions.
- Participating in team ceremonies, knowledge sharing, brainstorming sessions etc.
- Becoming a security champion, evangelising the best practices and guiding other Canvanauts in the cloud security space.
Key Requirements:
- You are proficient and happy to code in Python, Java or Golang.
- You have deep knowledge and understanding of Computer Engineering fundamentals and first principles.
- You are proficient with infrastructure-as-code, we’re a Terraform shop, but strong experience with other IaC tools will do the trick.
- You have a solid knowledge of AWS services such as EC2, EKS, Lambda, DynamoDB, RDS, S3 or equivalent Cloud provider experience.
- You have experience with cloud security tooling – having competency with AWS IAM, Config, SecurityHub and tools like Hashicorp Vault and other cloud security and compliance vendors.
- Experience building platforms offering security capabilities to the rest of the business.
What's in it for you?
Achieving our crazy big goals motivates us to work hard - and we do - but you'll experience lots of moments of magic, connectivity and fun woven throughout life at Canva, too. We also offer a stack of benefits to set you up for every success in and outside of work.
Here's a taste of what's on offer:
- Equity packages - we want our success to be yours too
- Inclusive parental leave policy that supports all parents & carers
- An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more
- Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally
Check out lifeatcanva.com for more info.
Other stuff to know
We make hiring decisions based on your experience, skills and passion, as well as how you can enhance Canva and our culture. When you apply, please tell us the pronouns you use and any reasonable adjustments you may need during the interview process.
Please note that interviews are conducted virtually.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS Cloud Compliance DynamoDB EC2 Golang Governance IAM Java Lambda Python S3 Terraform
Perks/benefits: Flex hours Home office stipend Parental leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open SQL-related jobs
- Open PowerShell-related jobs