FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Tech Stack
Tools & technologiesAnsibleAWSAzureCloudGoGoogle Cloud PlatformPythonSplunkTerraform
About the role
Key responsibilities & impact- Deliver high-impact security engineering solutions across detection and platform engineering service streams
- Design and implement detection capabilities, automate security workflows, and enhance security platform infrastructure
- Lead incident response coordination and act as escalation point for security incidents across Canva's cloud-native infrastructure, including participation in on-call rotation
- Investigate and triage security alerts, coordinating containment, eradication, and recovery activities across a range of security events
- Lead and contribute to post-incident reviews, translating incident learnings into improved detections, playbooks, and response processes
- Build and maintain automation workflows and response playbooks that streamline investigation, triage, and response, reducing analyst toil and improving mean-time-to-respond
- Partner with CTI, Application Security, and Red Team to turn threat intelligence and emerging risks into practical detection and response outcomes
- Develop and improve security response tooling and capabilities across areas including case management, automation, SOAR, SIEM, and forensics
Requirements
What you’ll need- Demonstrable experience in incident response, DFIR, or security operations, with a proven track record coordinating security events from detection through resolution
- Worked extensively with enterprise security platforms including SIEM (Elastic Security, Splunk, or similar), EDR (SentinelOne, CrowdStrike, Microsoft Defender, or similar), and SOAR platforms
- Investigative mindset with the ability to solve ambiguous security problems and make risk-based decisions under pressure
- Working knowledge in at least one of the major cloud providers (AWS, GCP, or Azure) and cloud attack techniques
- Working knowledge of infrastructure-as-code (Terraform/Ansible) and DevOps practices
- Excel at documentation, communication, and stakeholder management during incidents
- Proficient in scripting and programming languages (Python, Go, or similar)
- Experience with advanced detection techniques: behavioural analytics, anomaly detection, GenAI workflows and GenAI harnesses
Benefits
Comp & perks- Equity packages - we want our success to be yours too
- Inclusive parental leave policy that supports all parents & carers
- An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more
- Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
incident responseDFIRsecurity operationsscriptingprogramming languagesbehavioural analyticsanomaly detectioninfrastructure-as-codeDevOps practicescloud attack techniques
Soft Skills
investigative mindsetrisk-based decision makingdocumentationcommunicationstakeholder management