Senior Software Engineer - Cloud Security & Compliance

Job Description

Join the team redefining how the world experiences design.

Hey, hello, hiya, g'day, mabuhay, kia ora, 你好, hallo, vítejte!

Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point.

Where and how you can work

Our flagship campus is in Sydney. We also have a campus in Melbourne and co-working spaces in Brisbane, Perth and Adelaide. But you have choice in where and how you work. That means if you want to do your thing in the office (if you're near one), at home or a bit of both, it's up to you.

What you’d be doing in this role

As Canva scales change continues to be part of our DNA. But we like to think that's all part of the fun. So this will give you the flavour of the type of things you'll be working on when you start, but this will likely evolve.

• Finding solutions to accommodate our cloud security and compliance requirements, and provide better insights to our engineers.
• Proactively improving the user experience with compliance and advocating for best practices.
• Being responsible for building and improving our secrets platform and tooling with exceptional quality, at a regular cadence, that impacts all Canva engineers.
• Providing technical leadership and expertise to drive pragmatic solutions and dive into impactful design decisions.
• Participating in team ceremonies, knowledge sharing, brainstorming sessions etc.
• Becoming a security champion, evangelising the best practices and guiding other Canvanauts in the cloud security space.
• Providing on-call support as part of a rotation with the team.

You're probably a match if

• You are proficient and happy to code in Golang (preferred), Python, Java or comparable languages
• You have deep knowledge and understanding of Computer Engineering fundamentals and first principles.
• A solid understanding of security best practices and compliance management in cloud environments
• You are proficient with infrastructure-as-code. We’re a Terraform shop, but strong experience with other IaC tools will do the trick.
• You have solid knowledge of AWS services like EKS, EC2, Lambda, DynamoDB, RDS, S3 or equivalent Cloud provider experience.
• You have experience with cloud security tooling – having competency with AWS IAM, and tools like Hashicorp Vault and other cloud security and compliance vendors.
• You have experience building platforms offering security capabilities to the rest of the business.
• You have strong written and verbal communication skills

It’s nice to have the following experience as well.

• Experience working with Kubernetes (preferred) or similar container orchestration tools
• Experience working with Bazel (preferred) or similar large-scale build tools

About the team

About the Cloud Platform Group:

The Cloud Platform’s group mission is to reduce the complexity of using the Cloud. We’re responsible for building a platform that enables cloud adoption whilst minimising risk introduced to the business. Our teams work together, and with other groups, to deliver cloud tooling, processes and best practices that uplift the security posture of Canva’s cloud environment. We do this by driving operational excellence, building products that abstract the complexities of the cloud away, and providing the most secure settings out of the box for the broader Engineering community.

About the Cloud Security & Compliance team:

The Cloud Security & Compliance team is part of the Cloud Governance sub-group and is responsible for the experience of accessing the cloud, using secrets in the cloud, and mitigating risks introduced into our cloud environments. Our goal is to provide our development teams with world-class tools to ensure workloads are secure in our Cloud environment. We achieve this by combining industry-leading third-party solutions with our own in-house developed solutions, deployed across our entire Cloud environment. As we scale, all of these areas require more sophisticated solutions to ensure that Canva’s engineers continue to adopt the cloud without compromising on security or efficiency.

What's in it for you?

Achieving our crazy big goals motivates us to work hard - and we do - but you'll experience lots of moments of magic, connectivity and fun woven throughout life at Canva, too. We also offer a range of benefits to set you up for every success in and outside of work.

Here's a taste of what's on offer:

• Equity packages - we want our success to be yours too
• Inclusive parental leave policy that supports all parents & carers
• An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more
• Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally

Check out lifeatcanva.com for more info.

Other stuff to know

We make hiring decisions based on your experience, skills and passion, as well as how you can enhance Canva and our culture. When you apply, please tell us the pronouns you use and any reasonable adjustments you may need during the interview process.

We celebrate all types of skills and backgrounds at Canva so even if you don’t feel like your skills quite match what’s listed above - we still want to hear from you!

Please note that interviews are conducted virtually.