Senior Threat Detection Engineer

Senior Threat Detection Engineer - Tooling and Automation (ANZ remote) Full-time Recruitment type: Permanent Join the team redefining how the world experiences design. Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point. Where and how you can work Our flagship campus is in Sydney. We also have a campus in Melbourne and co-working spaces in Brisbane, Perth and Adelaide. But you have choice in where and how you work. That means if you want to do your thing in the office (if you're near one), at home or a bit of both, it's up to you. What you’d be doing in this role As Canva scales change continues to be part of our DNA. But we like to think that's all part of the fun. So this will give you the flavour of the type of things you'll be working on when you start, but this will likely evolve. As a Senior Threat Detection Engineer, you will deliver high-impact security engineering solutions across our detection and platform engineering service streams. You will design and implement detection capabilities, automate security workflows, and enhance our security platform infrastructure. Your work will directly strengthen Canva's security posture by enabling faster threat detection, reducing analyst toil through automation, and scaling our security operations capabilities. We are not looking for someone who checks every single box, we’re looking for lifelong learners and people who can make us better with their unique experiences. Lead detection engineering initiatives end-to-end, partnering with Application Security, CTI, and Red Team to conduct threat modelling, translate threat intelligence into high-fidelity detections, and implement detection-as-code practices using version control and CI/CD pipelines Participate in on-call rotation to support incident response and alert triage activities Design and build SOAR workflows and automation pipelines that automate detection triage, investigation, and response while reducing manual context-switching and cognitive load for analysts, improving mean-time-to-detect, analyse, and respond Design and/or maintain security platform infrastructure using infrastructure-as-code (Terraform/Ansible), establishing monitoring, alerting, and service-level objectives for platform health, detection coverage, and operational metrics Collaborate across security and engineering teams to provide technical consultation on detection strategy and platform capabilities You're probably a match if you have Experience in detection engineering, threat hunting, or security operations (SOC) , with proven track record designing, implementing, and tuning detection logic for enterprise security platforms (SIEM, EDR, SOAR) and managing full detection lifecycle from threat research through deployment and maintenance Experience with Incident Response processes, alert triage and responding to security incidents Hands-on experience with enterprise security platforms including SIEM platforms (Elastic Security, Splunk, or similar), EDR solutions (SentinelOne, CrowdStrike, Microsoft Defender, or similar), and SOAR platforms. Working knowledge of Infrastructure-as-code using Terraform/Ansible or similar tools to deploy and manage security infrastructure and understanding of DevOps practices. Experience with at least one cloud platform (AWS, GCP, or Azure). Understanding of containerisation and Kubernetes. Beneficial Experience (not required, but helpful) Background in Threat Hunting or Threat Intelligence. Publishing research in blogs or contributing to open-source security tools. Experience with advanced detection techniques: behavioural analytics, anomaly detection, machine learning-based detection and GenAI workflows. About the team The Detection & Response (D&R) organisation is responsible for protecting Canva from security threats through proactive detection engineering, incident response, and security platform operations. We operate at the intersection of security engineering and security operations, building and maintaining the detection capabilities, automation workflows, and security infrastructure that enable Canva to identify and respond to threats at scale. About DETA (Detection Engineering, Tooling & Automation) DETA provides specialised security engineering services to enable Detection & Response to prevent, detect, and respond to cyber attacks through specialised security engineering services that transform threats into automated, measurable protection. You’ll be joining DETA at a transformational moment as we mature our service-oriented engineering discipline. Your work will directly enable Canva to protect our vision to empower the world to design by and match the scale of cyber threats through automation and platform engineering. This is an opportunity to shape the future of detection engineering at Canva, establishing the technical and operational foundations that will support our security program as we continue scaling globally. What's in it for you? Achieving our crazy big goals motivates us to work hard - and we do - but you'll experience lots of moments of magic, connectivity and fun woven throughout life at Canva, too. We also offer a stack of benefits to set you up for every success in and outside of work. Here's a taste of what's on offer: Equity packages - we want our success to be yours too Inclusive parental leave policy that supports all parents & carers An annual Vibe & Thrive allowance to support your wellbeing, social connection, office setup & more Flexible leave options that empower you to be a force for good, take time to recharge and supports you personally Check out lifeatcanva.com for more info. Other stuff to know We see AI as a powerful amplifier of creativity and technology at Canva. We’re evolving how we assess AI skills in our Technology hiring experience - you’ll tackle interactive, real-time challenges that reflect the kind of work we do. In some interviews, you may also be asked to solve a problem using an AI tool to show how you approach challenges with tech by your side. Your recruitment partner will walk you through what to expect. We make hiring decisions based on your experience, skills and passion, as well as how you can enhance Canva and our culture. When you apply, please tell us the pronouns you use and any reasonable adjustments you may need during the interview process. Please note that interviews are conducted virtually. #J-18808-Ljbffr