Join the team redefining how the world experiences design.
Hiya, g'day, mabuhay, kia ora,你好, hallo, vítejte!
Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point.
We have a swanky new office in London that has all the bells and whistles. Even though you'll find us in Shoreditch, you have choice in where in the UK you'd like to work. That means if you want to do your thing in the office (if you're nearby) or at home or a bit of both, it's up to you.
Responsibilities
* Act as the escalation point for security & privacy incidents across Canva's systems
* Actively respond to security events from detection through to resolution, including the rollout of solutions and mitigations to prevent a recurrence
* Actively monitor Canva’s internal and production systems for possible attacks and intrusions
* Proactively run threat detection exercises and search for anomalous behavior
* Build out and develop the tools and foundations for security incident alerting, management, communication, and response
* Maintain incident response documentation, participate in post incident reviews, and contribute to incident reports
* Participate in the on-call roster for security incident response
* Assist in the promotion of a security mindset and the establishment of best practices with across a wide range of security areas: secure development, cryptography, network security, security operations, and incident response
* Identify trends, research, new technologies, and emerging threats models, which may impact the business
* Contribute to projects that enhance the security positioning of the business
Required Skills and Experience
* First and foremost, have a curious detective mindset and be driven to solve ambiguous problems with simple solutions
* Proven experience in Security - Engineering, Operations, Incident Response, Analysis, or Threat Research
* Knowledge of web protocols, common attacks, and a working knowledge of Linux/Unix tools and architecture
* Exposure to the cloud! Ideally AWS, but GCP or Azure would be completely fine!
* Documentation, communication, and stakeholder management skills; the ability to work alongside technical and non-technical colleagues
* The ability to prioritize multiple tasks and projects in a dynamic environment
#J-18808-Ljbffr