Enterprise Security Team Lead

About the role

Canva is looking for an experienced security professional to lead its Internal Systems Security (ISS) team. You will shape the strategy for protecting internal endpoints, networks, and SaaS applications while balancing security, compliance, and developer experience.

Key responsibilities

• Manage a team of security engineers focused on threat modelling, security tool rollouts, and building internal security services.
• Own the internal security strategy, ensuring secure guardrails that enable rapid product development.
• Coach and develop engineers through regular feedback and performance planning.
• Define and maintain the team’s ways of work, including sprint planning, stand‑ups, and retrospectives.
• Collaborate with IT, Sales, Customer Support and other stakeholder groups to embed security across the organisation.
• Drive adoption of internal security systems and champion their benefits company‑wide.

Required profile

• Proven ability to design access strategies that balance usability, security, and compliance.
• Experience managing and growing high‑performing security teams.
• Demonstrated expertise in threat modelling complex systems and delivering mitigation strategies.
• Track record of working with external stakeholders (e.g., IT, Procurement) to deliver secure SaaS solutions.

Required skills

• Threat modelling
• Security tool rollout and integration
• Access management and control
• SaaS security architecture
• Compliance frameworks and governance