Senior Security Engineer – Detection & Response

This is a fully remote position, open to applicants in Australia.

📋 Description

• Provide impactful security engineering solutions across detection and platform engineering service areas.

• Design and implement detection capabilities, automate security workflows, and enhance the security platform infrastructure.

• Oversee incident response coordination and serve as the escalation point for security incidents within Canva's cloud-native infrastructure, including participation in the on-call rotation.

• Investigate and triage security alerts, coordinating containment, eradication, and recovery activities across various security events.

• Lead and contribute to post-incident reviews, translating lessons learned from incidents into improved detections, playbooks, and response processes.

• Develop and maintain automation workflows and response playbooks that streamline investigation, triage, and response, thereby reducing analyst workload and enhancing mean-time-to-respond.

• Collaborate with CTI, Application Security, and Red Team to convert threat intelligence and emerging risks into actionable detection and response outcomes.

• Enhance and develop security response tools and capabilities in areas including case management, automation, SOAR, SIEM, and forensics.

⛳️ Requirements

• Proven experience in incident response, DFIR, or security operations, with a demonstrated history of coordinating security events from detection to resolution.

• Extensive experience with enterprise security platforms such as SIEM (Elastic Security, Splunk, or similar), EDR (SentinelOne, CrowdStrike, Microsoft Defender, or similar), and SOAR platforms.

• An investigative mindset capable of resolving ambiguous security challenges and making risk-based decisions under pressure.

• Familiarity with at least one of the major cloud providers (AWS, GCP, or Azure) and understanding of cloud attack techniques.

• Knowledge of infrastructure-as-code (Terraform/Ansible) and DevOps practices.

• Strong skills in documentation, communication, and stakeholder management during incidents.

• Proficient in scripting and programming languages (Python, Go, or similar).

• Experience with advanced detection techniques: behavioral analytics, anomaly detection, GenAI workflows, and GenAI harnesses.

🏝️ Benefits

• Equity packages - we want our success to be yours too.

• Inclusive parental leave policy that supports all parents and carers.

• An annual Vibe & Thrive allowance to support your wellbeing, social connections, office setup, and more.

• Flexible leave options that empower you to make a positive impact, take time to recharge, and support your personal needs.