Security Engineering Manager - Vulnerability Management, Application Security

Canva
Summary
Join Canva's Security Engineering team as a Security Engineering Manager for the Vulnerability Management team. Lead a team dedicated to identifying, assessing, and automating the resolution of security vulnerabilities across Canvaβs global ecosystem. Empower engineers with tools and context to make secure decisions by default, ensuring secure features without sacrificing speed and scale. Guide engineers in developing and scaling security solutions, navigating complex problem spaces, and balancing security rigor with Canva's innovation pace. The Security Group protects the community, people, and company from online threats by simplifying secure actions. The Vulnerability Management team proactively identifies and reduces risks across Canvaβs systems and codebase, partnering with product teams and platform engineers. Canva offers various benefits, including equity packages, inclusive parental leave, a wellbeing allowance, and flexible leave options.
Requirements
- Youβve led engineering or security teams and love growing people from all levels, while scaling systems
- Youβre a technical hands on leader (with previous experience as a Software or Security engineer), who is comfortable getting into the thick of it when needed using software engineering fundamentals and security first principles to guide technical decision making
- Previous experience in cloud-based environments (AWS, Google Cloud, Azure) with a working knowledge of broad infrastructure functions - CI/CD pipelines, automation, site reliability etc
- You bring deep understanding of vulnerability management practices β across infrastructure, application security, and cloud environments
- Youβre comfortable working with ambiguity, designing programs, and influencing beyond your immediate team
- You can communicate clearly with technical and non-technical audiences and love turning complex problems into simple, effective solutions
- Experience making careful engineering tradeoffs, particularly around "Build vs Buy", evaluating potential third party systems to partner with, and managing and working with vendors to meet Canva's business needs
- Strong customer focus to understand the use cases and requirements of internal stakeholders, and identify opportunities to empower them to do their best work
Responsibilities
- Own the delivery of Application Security solutions for our large-scale, cloud-native and SaaS application stack, to enable Canva to understand its vulnerability landscape, and have remediation built into our development lifecycle
- Support a security-first engineering culture by making the optimally secure solution the easiest one for software engineering teams to use
- Drive technical decision making support to your team in a fast-paced, innovation-focused environment
- Foster a culture of communication, bridging the communication gap between teams, groups, and company leaders
- Invest in working with engineers on growth and development opportunities to help further their skillset and grow into new roles, with an ability to deliver relevant and timely feedback (positive & constructive) to help them to continuously improve and learn
- Be involved in hiring; build and grow high-performing and highly engaged teams of world-class engineers by attracting, interviewing, and selecting talent for your group
- Coordinate across various specialties and parts of the business to understand the impact and feasibility of strategic goals within the group, and how that impacts your own roadmap
- Drive delivery of large, cross team and cross group initiatives and projects from ideation to completion
Preferred Qualifications
- Subject-matter expertise of Amazon Web Services and associated technologies and products within the AWS ecosystem
- Previous experience leading teams to scale security solutions through automation, continuously reducing the tax that security requirements can impose on software development and operations
- Experience working on delivering vulnerability management at scale in a fast paced, rapid growth environment
Benefits
- Equity packages - we want our success to be yours too
- Inclusive parental leave policy that supports all parents & carers
- An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more
- Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally


