Canva
Computer Software
EnterpriseSecurity-TeamLead
Neural analysis suggests this role is
optimal for not-applicable candidates.
“Enterprise Security - Team Lead at Canva. Skills: Managing a team of security engineers, Owning the strategy for internal security, Threat modelling complex systems, Managing and growing high performing teams, Working with external stakeholder teams. Managing a team of security engineers. Threat modelling”
What You'll Achieve.
Deliver preventive and detective controls and processes that reduce security risk; Build an experience that allows Canvanauts to move quickly, while having secure guardrails in place; Resulting in a high-performing team; Build security improvements that scales beyond our team; Deliver secure SaaS solutions
Industry & Context.
Threat modelling complex systems; Identify security risks; Develop mitigation strategies; Balancing security and user experience; Making pragmatic tradeoffs
What They're Looking For.
Must Have
Ability to build a strategy around access that balances usability, security and compliance requirements, being flexible to changes as user patterns change, Prior experience managing and growing high performing teams, Proven ability to threat model complex systems, identify security risks, develop mitigation strategies with engineering teams, and see it through to delivery, Proven experience working with external stakeholder teams such as IT and Procurement to deliver secure SaaS solutions, A good understanding of the internal IT environments and the security market that surrounds them, Zero trust, IDPs, SSPM, MDMs, Password Managers, Ability to run large, complex projects across multiple groups, set the definition of done, track metrics and deliver comms at company scale
Nice to Have
Proficiency in one or more programming/scripting languages, with the ability to mentor others on best practices in at least one language: Python, Golang, Java, Familiarity with infrastructure as code (e. g Terraform), Experience working with identity management technologies (MFA, SAML, WebAuthn, Okta), Understanding of common compliance frameworks like SOC2, ISO27001, GDPR etc.
What You'll Do.
Managing a team of security engineers
Security tool rollouts
Building internal security services
Partnering with other teams on security strategy
Owning the strategy for internal security at Canva
compliance and developer experience
Building an experience that allows Canvanauts to move quickly
while having secure guardrails in place
Coaching and developing engineers
Owning the team’s ways of work
Working collaboratively with other partner groups
Building security improvements that scales beyond our team
Driving adoption of our systems internally
Championing the benefits of what we build
How You'll Work.
Team & Collaboration
Working collaboratively with other partner groups such as IT, Sales, Customer Support and others; Partnering with teams like IT, Sales and Customer Support to help build security into their roadmaps early on
Communication Scope
Delivering comms at company scale
Process & Methodology
Running large, complex projects across multiple groups, Setting the definition of done, Tracking metrics, Delivering comms at company scale, Sprint planning, Stand-ups, Retrospectives
Full Job Description
Join the team redefining how the world experiences design. Hey, g'day, mabuhay, kia ora, 你好, hallo, vítejte! Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point. Where and how you can work Our flagship campus is in Sydney. We also have a campus in Melbourne and co-working spaces in Brisbane, Perth and Adelaide. But you have choice in where and how you work, we trust our Canvanauts to choose the balance that empowers them and their team to achieve their goals. About the group/team The Security Group is responsible for protecting Canva systems and data from information security threats. The group runs programs across Application Security, Risk Management, Enterprise Security, and Threat Detection and Response domains. Our teams work together, and with other groups, to deliver preventive and detective controls and processes that reduce security risk. Internal Systems Security team (ISS) helps secure our internal endpoints, networks, systems and data, used by every Canvanaut. We build and run a number of services that help run our device posture setup, secure credentials and secure our SaaS applications at scale. Additionally we partner with teams like IT, Sales and Customer Support to help build security into their roadmaps early on. The team has to strictly balance security and user experience to make pragmatic tradeoffs every day, especially as work accelerates with AI tooling. Role Responsibilities: * Managing a team of security engineers who do a mixture of threat modelling, security tool rollouts, building internal security services and partnering with other teams on security strategy. * Owning the strategy for internal security at Canva, balancing security, compliance and developer experience to build an experience that allows Canvanauts to move quickly, while having secure guardrails in place. * Coach and develop engineers by providing regular, practic
Applying for this Enterprise Security - Team Lead role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on SmartRecruiters
- SmartRecruiters often includes a video screening step — check camera and mic permissions.
- Link your GitHub or portfolio directly in the profile section for technical roles.
- Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.
ANONYMOUS · UNFILTERED
What do employees actually say about Canva?
Real rants from real employees. Read before you apply.