Security Engineering Manager - Vulnerability Management, Application Security

Summary

Join Canva's Security Engineering team as a Security Engineering Manager for the Vulnerability Management team. Lead a team dedicated to identifying, assessing, and automating the resolution of security vulnerabilities across Canva’s global ecosystem. Empower engineers with the tools and context they need to make secure decisions by default, making the secure path the easiest path. Guide engineers as they develop and scale security solutions, navigate complex problem spaces, and balance security rigor with Canva's pace of innovation. The role involves owning the delivery of Application Security solutions, supporting a security-first engineering culture, driving technical decision-making, fostering communication, investing in engineer growth and development, participating in hiring, coordinating across business units, and driving cross-team initiatives. Canva offers a range of benefits including equity packages, inclusive parental leave, a wellbeing allowance, and flexible leave options.

Requirements

• You’ve led engineering or security teams and love growing people from all levels, while scaling systems
• You’re a technical hands on leader (with previous experience as a Software or Security engineer), who is comfortable getting into the thick of it when needed using software engineering fundamentals and security first principles to guide technical decision making
• Previous experience in cloud-based environments (AWS, Google Cloud, Azure) with a working knowledge of broad infrastructure functions - CI/CD pipelines, automation, site reliability etc
• You bring deep understanding of vulnerability management practices — across infrastructure, application security, and cloud environments
• You’re comfortable working with ambiguity, designing programs, and influencing beyond your immediate team
• You can communicate clearly with technical and non-technical audiences and love turning complex problems into simple, effective solutions
• Experience making careful engineering tradeoffs, particularly around "Build vs Buy", evaluating potential third party systems to partner with, and managing and working with vendors to meet Canva's business needs
• Strong customer focus to understand the use cases and requirements of internal stakeholders, and identify opportunities to empower them to do their best work

Responsibilities

• Own the delivery of Application Security solutions for our large-scale, cloud-native and SaaS application stack, to enable Canva to understand its vulnerability landscape, and have remediation built into our development lifecycle
• Support a security-first engineering culture by making the optimally secure solution the easiest one for software engineering teams to use
• Drive technical decision making support to your team in a fast-paced, innovation-focused environment
• Foster a culture of communication, bridging the communication gap between teams, groups, and company leaders
• Invest in working with engineers on growth and development opportunities to help further their skillset and grow into new roles, with an ability to deliver relevant and timely feedback (positive & constructive) to help them to continuously improve and learn
• Be involved in hiring; build and grow high-performing and highly engaged teams of world-class engineers by attracting, interviewing, and selecting talent for your group
• Coordinate across various specialties and parts of the business to understand the impact and feasibility of strategic goals within the group, and how that impacts your own roadmap
• Drive delivery of large, cross team and cross group initiatives and projects from ideation to completion

Preferred Qualifications

• Subject-matter expertise of Amazon Web Services and associated technologies and products within the AWS ecosystem
• Previous experience leading teams to scale security solutions through automation, continuously reducing the tax that security requirements can impose on software development and operations
• Experience working on delivering vulnerability management at scale in a fast paced, rapid growth environment

Benefits

• Equity packages - we want our success to be yours too
• Inclusive parental leave policy that supports all parents & carers
• An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more
• Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally