Staff Application Security Engineer

Why Join Our Team?At SafetyCulture, we are not just another tech company. We are a dynamic global organization that values innovation and the well-being of our team members.Our vibrant workplace includes catered lunches, engaging team events, trendy merchandise, and even our furry friends at the office. But what truly sets us apart is our mission to enhance …

Why Join Our Team?At SafetyCulture, we're not your typical global tech company. While we offer perks like catered lunches, team events, cool merchandise, and even dogs in the office, our true essence lies in our mission.Our diverse team of nearly a thousand dedicated individuals is committed to enhancing our products and improving the lives of our customers. Here, you will often hear, “Yes, let’s give it a shot” rather than, “That’s not how we do things here.”We're creating tools that empower over 3 billion essential workers worldwide — from factory floor operators to truck drivers and store assistants. With the scale and innovation reminiscent of major tech firms, we pride ourselves on eliminating unnecessary bureaucracy. Instead, we focus on smart, experienced professionals tackling real-world challenges swiftly.While our impact is vast, the ownership feels personal. Every full-time team member is granted equity, ensuring that as we grow, you benefit too. We recognize that perfection is unattainable, but our growth strategy emphasizes intelligent scaling, operational maturity, and a robust focus on AI.This is your chance to make a significant impact in tech without the downsides often associated with larger companies. If this excites you, we encourage you to apply.About the RoleAs a Senior Application Security Engineer at SafetyCulture, you will play a crucial role in safeguarding our platform from the ground up. By embedding security into our development processes, you'll collaborate closely with product and engineering teams to create secure architectures, APIs, and development practices across our cloud-native SaaS platform hosted on AWS.You will focus on scaling security measures while ensuring a high engineering velocity. At the Staff level, your responsibilities will include leading cross-team security initiatives, establishing secure-by-default patterns, overseeing major authentication migrations, and mitigating large-scale dependency risks. Your influence will extend to architectural decisions across various product teams, and you will mentor engineers to enhance secure coding and design practices throughout the organization.About YouYou're a proactive security engineer with solid software engineering principles. You possess a deep understanding of how modern SaaS platforms operate, including microservices, distributed systems, and CI/CD practices, and you know how to implement security effectively and at scale.

Join Canva as a Staff Security Engineer specializing in AI Security. In this fully remote role, you will play a pivotal part in safeguarding our innovative design platform against emerging threats. Collaborate with talented engineers and cybersecurity experts to develop robust security measures that protect our users and their data.

Company Overview At Zuora, we are at the forefront of the Modern Business revolution. Our mission is to empower businesses with subscription-based models that prioritize customer relationships and promote sustainability. By embracing the Subscription Economy, we are transforming industries and collaborating with innovative companies worldwide to enhance their monetization strategies and optimize the digital experiences of their subscribers. The Team & Role Join Zuora's dedicated Application Security & Security Engineering team, where we work in tandem with engineering to integrate security throughout the software development lifecycle. As a Senior Security Engineer, you will engage directly with developers and architects to advocate for secure design practices, automate security processes, and support vital projects across our cloud-native platform. This role is essential to our expanding operations in Sydney and offers a unique opportunity to influence security practices on a global scale. This position operates in a hybrid model, allowing flexibility to work both remotely and in the office. Our Tech Stack: Java, Spring, Rest API, Microservices, Kafka, Spark, NodeJS, AWS, Kubernetes, Terraform, AngularJS

carsales is hiring a Senior Security Engineer focused on Product Security & Architecture in Sydney. This position plays a key role in embedding security into the design and development of products. Role overview This role centers on creating and applying security frameworks and architectural patterns. The goal is to ensure the integrity of carsales systems remains protected throughout the product lifecycle. What you will do Design security frameworks that align with product goals Implement architectural solutions to safeguard system integrity Work closely with product and engineering teams to integrate security at every stage Location This position is based in Sydney.

Join our dynamic team at Roboyo as an Application Engineer specializing in Appian. In this role, you will leverage your technical skills to design, develop, and implement innovative solutions that enhance our client’s operational efficiency. You will collaborate with cross-functional teams to deliver exceptional results and drive digital transformation initiatives.

Imagine having the capability to stress-test an entire power grid against a hurricane before the clouds even gather. This is the innovative reality we are forging at Neara.By harnessing cutting-edge machine learning technology, we create engineering-grade, physics-enabled digital twins of electricity grids across four continents, empowering asset owners to identify their most pressing challenges and implement viable solutions across millions of kilometers of infrastructure.Through simulating extreme weather conditions and structural stress at a network-wide scale, we enable the world's largest utilities to identify risks, optimize investments, and contribute to a more resilient global energy future.Our team comprises brilliant minds dedicated to making a tangible difference in the real world, leveraging AI and machine learning to enhance everything from data classification to complex scenario analysis. We have cultivated a unique culture where innovation flourishes because each team member takes ownership of our mission. We seek intelligent, creative individuals to help us amplify this impact worldwide.Integrating practical security measures into our systems is crucial, and we are looking for our first in-house Senior Security Engineer to champion and elevate security as a deeply practical, engineering-focused discipline.This role transcends mere compliance; you will engage directly with code, shaping the design and operation of secure systems in practice while ensuring that security becomes the path of least resistance for everyone at Neara.Key Responsibilities:Engineering & Product SecurityConduct hands-on security reviews of code, architecture, and infrastructure.Serve as a security reviewer on pull requests and design documents.Identify and remediate vulnerabilities across back-end systems, APIs, cloud infrastructures, CI/CD pipelines, authentication mechanisms, and data flows.Utilize and fine-tune static, dynamic, dependency, and runtime analysis tools (both commercial and open-source, including AI-assisted options).Perform white-box and black-box testing, along with targeted penetration tests.Contribute to designing and enhancing defense-in-depth strategies across systems and processes.Engage early in product design, helping to prevent security issues rather than merely reacting to them.Fostering a Security Culture & Practical ImplementationPromote security best practices and awareness throughout the organization.

Role overview Canva is hiring a Staff Backend Engineer - Experiments in Sydney. This senior role focuses on building and maintaining backend systems that support experimental features. The work directly shapes how new ideas are tested and delivered, influencing both product growth and the user experience.

About Our TeamAt OpenAI, we believe that the future of artificial general intelligence should benefit all of humanity. Our Security team plays a crucial role in safeguarding our technology, personnel, and products. We focus on technical excellence in our builds while maintaining operational efficiency in our processes. Our core principles include prioritizing impactful initiatives, empowering researchers, preparing for groundbreaking technologies, and fostering a robust security culture.About the PositionAs a Security Engineer specializing in Detection and Response, you will collaborate with OpenAI's engineers and researchers to develop, operate, and secure transformative AI technologies. Your role will encompass various aspects of Detection and Response, engaging in infrastructure and operations, while contributing as a versatile generalist within the Security team. Key responsibilities include:Leading initiatives across major security domains such as AppSec, InfraSec, OffSec, and Detection and Response.Innovating solutions to address unique security challenges.Collaborating on advanced AI research and leveraging AI to enhance OpenAI's security effectiveness.This role can be based in Sydney, Australia, Tokyo, Japan, or Singapore. We embrace a hybrid work model, requiring three days in the office weekly, and provide relocation assistance for new hires.Key ResponsibilitiesEnhancing Detection and Response infrastructure.Creating tools to manage the lifecycle of detection rules.Developing, assessing, and optimizing detection rules for effective operations.Automating manual response processes.Ensuring visibility and control over OpenAI’s endpoint fleet (macOS, Windows).Driving advancements in identity access management (IAM), device management, productivity software, and public cloud environments (e.g., AWS, Microsoft Azure).You Will Excel in This Position If You:Have a background in Security or a related field.Possess experience with Microsoft Azure or other cloud infrastructure platforms.Understand modern adversary tactics and defense strategies.

Why Choose SafetyCulture?At SafetyCulture, a leading global technology company, we offer more than just catered lunches and team events. Join us to be part of a mission-driven team that is dedicated to enhancing the lives of our customers and the 3 billion essential workers who keep our world moving. Here, you’ll experience a culture of innovation and agility, where new ideas are welcomed and every voice matters.We pride ourselves on fostering an environment free from corporate theatrics, where smart, experienced individuals collaborate to solve real-world problems. As part of our team, you’ll enjoy personal equity stakes, ensuring that as we grow, you grow too. Our focus is on scaling intelligently, backed by a strong vision and a commitment to harnessing AI for operational excellence.About the RoleAs a Senior Security Engineer, you will play a critical role in shaping the cloud security architecture at SafetyCulture. You will lead efforts to automate security protection, detection, and response across our AWS environments, safeguarding millions of users. Collaborating with software, platform, and data engineers, you will elevate our security practices and integrate secure design principles throughout our platform. Your initiatives will ensure that every code deployment contributes to a robust and secure system.About You: You are a skilled engineer with a strong background in AWS Cloud and expertise in architecting and securing AWS infrastructures. Proficient in coding with Golang, NodeJS, or Python, you understand the complexities of security, from vulnerability management to system hardening and automation. As a proactive self-starter, you excel in driving projects from concept to execution within collaborative teams.

At MYOB, we are a premier business management solution provider with a fundamental mission: empowering businesses across Australia and New Zealand to launch, thrive, and flourish.We believe that success for one business leads to success for all. Whether you are a supporter, an employee, or aspiring to start your own venture, a smoothly operating business benefits everyone—owners, employees, customers, suppliers, and families alike. Our commitment is to provide every entrepreneur with the essential tools they need to concentrate on what truly matters, enabling them to achieve remarkable milestones—whatever 'remarkable' means to them.Joining MYOB means becoming part of a transformative journey. You will leverage your expertise to foster business success, influence the future of the workplace, and grow alongside the communities we serve. While we specialize in software, our true focus is on people—making MYOB a cornerstone for every business.About the RoleJoin our passionate Security team as a Principal Product Security Engineer. In this pivotal role, you will collaborate with our Engineering teams to ensure the rapid delivery of secure software. You will help drive a security-first mindset and contribute to cutting-edge security principles while securing emerging technologies.You will be instrumental in developing internal tools, conducting architecture reviews, formulating strategies, identifying risks through threat modeling, and mentoring engineers on effective remediation techniques.Who You Are:You are a seasoned security professional adept at partnering with engineering teams to enhance security across cloud-based products. You possess a blend of hands-on technical expertise and the ability to educate, influence, and implement scalable security enhancements.Demonstrable experience in security roles supporting cloud services, with a strong grasp of application and product security, OWASP Top 10, CWE/SANS Top 25, and compliance frameworks including NIST, PCI DSS, and ISO 27001.A secure-by-design approach, crafting practical security solutions tailored to domain needs and guiding developers towards secure practices.Exceptional communication skills, capable of engaging diverse audiences, bridging knowledge gaps, and enhancing overall security awareness.Expertise in security assurance, encompassing solution design reviews, compliance assessments, source code reviews, and security maturity evaluations.Technically proficient, comfortable with coding, integrating security concepts (e.g., canary deployments, feature flags), and assisting colleagues with security inquiries.A continuous improvement mindset, proactively identifying patterns and trends while fostering automation, frameworks, and tools to enhance code and data security within a dynamic, collaborative environment.

Our Mission at Speechify Speechify’s goal is to make reading accessible for everyone. Our text-to-speech technology helps over 50 million people convert reading materials, including PDFs, books, Google Docs, news stories, and websites, into audio. This allows users to listen, learn, and retain information more efficiently. Our Products and Recognition The Speechify platform spans multiple devices and platforms: iOS, Android, Mac, Chrome, and web. Our Chrome extension earned Google’s Chrome Extension of the Year, and Apple recognized us with the 2025 Design Award for Inclusivity. Our Team Speechify operates as a fully remote team of nearly 200 people. Our group includes engineers and AI researchers with experience at Amazon, Microsoft, and Google, as well as alumni from Stanford and other leading universities. Collaboration and innovation are at the core of our culture.

Join Canva as a Senior Engineering Manager specializing in Security Platform Engineering. In this pivotal role, you will lead a talented team in designing and implementing robust security features that protect our users and their data. You will collaborate closely with cross-functional teams to drive security initiatives and enhance our platform's integrity.

About UsAt Heidi Health, we believe that the healthcare industry deserves a better rhythm—one that nurtures continuous, empathetic care. Our mission is to develop an AI Care Partner that collaborates seamlessly with healthcare professionals, enhancing their ability to provide compassionate patient care.Our diverse team comprises medical practitioners, engineers, designers, researchers, and creative minds dedicated to creating innovative tools that allow clinicians to focus on what truly matters: their patients.In a short span of just 18 months, Heidi has successfully reclaimed over 18 million hours for healthcare professionals, facilitating 73 million patient visits across 116 countries. Currently, Heidi supports more than two million patient visits weekly on a global scale.With nearly $100 million in funding, we are expanding our reach in the US, UK, Canada, and Europe, partnering with top health systems such as NHS, Beth Israel Lahey Health, and Monash Health.Your RoleAs a Senior Software Engineer specializing in Desktop Applications, you will be instrumental in shaping Heidi's cross-platform desktop solutions. Your focus will be on designing robust architectures and developing dependable systems that operate seamlessly across various operating systems.You are passionate about software quality, performance, and user experience, dedicated to creating intuitive, high-quality desktop applications that clinicians can rely on. You excel in working across the stack, from Rust-based system components to web interfaces, and you take pride in resolving complex challenges from design through to delivery and long-term maintenance.Your expertise lies in transforming intricate product and platform requirements into elegant, reliable desktop software. You connect low-level systems engineering with outstanding user experiences, thriving in a culture where autonomy, ownership, and impact take precedence over hierarchy.You enjoy engaging closely with the problem space, including audio, performance, AI workflows, and cross-platform constraints. You are thrilled by the opportunity to build an AI-powered healthcare solution that functions flawlessly across various operating systems and geographical locations.Your Responsibilities:Lead the development of Heidi’s cross-platform desktop applications utilizing Tauri, Rust, and Next.js, delivering production-grade software for macOS and Windows (Linux experience is a plus).Oversee the complete desktop experience, from system architecture and native integrations to frontend implementation, performance optimization, and sustainable maintenance.Design and implement high-performance Rust components that drive real-time audio capture, transcription pipelines, local state management, and secure system interactions.

Role overview carsales seeks a Security Engineer - Detection & Response based in Sydney to help safeguard digital assets and enhance security operations. The position centers on identifying and addressing threats using advanced detection techniques. What you will do Monitor company systems for threats and unusual activity Investigate security incidents and respond to reduce risk Collaborate with teams to design and implement security protocols Assist with meeting industry security compliance standards Collaboration This role works closely with engineers, product teams, and other stakeholders to strengthen security measures and respond to incidents as they occur.

Why Join Us?At SafetyCulture, we redefine what it means to be a tech company. While we enjoy perks like catered lunches, team events, cool merchandise, and friendly office dogs, our true motivation lies in our mission.Our dedicated team of nearly a thousand employees is committed to enhancing our product and improving the lives of our users. Here, you will frequently hear, 'Let’s give it a shot,' rather than encountering bureaucratic barriers.We are developing innovative tools that serve the 3 billion individuals who keep the world functioning—such as factory operators, baggage handlers, truck drivers, servers, and store assistants. With the scale and ingenuity associated with major tech firms, we pride ourselves on eliminating corporate formalities and empowering knowledgeable individuals to tackle real challenges swiftly.At SafetyCulture, you’re not just another employee; you have a stake in our success. Every full-time team member receives equity, ensuring that as we grow, so do you. While we acknowledge that perfection is unattainable, our ongoing growth is focused on scaling intelligently, guided by operational maturity, a clear vision, and a robust emphasis on AI innovation.If the idea of making a substantial impact in tech without the usual corporate pitfalls excites you, you'll thrive here.About the RoleAs a Senior Cloud Security Engineer, you will play a pivotal role in fortifying SafetyCulture's cloud security framework. Your focus will be on automating security measures, threat detection, and incident response within our AWS environments that cater to millions of users.You will collaborate closely with our software, platform, and data engineering teams to elevate our security practices and ensure secure design principles are integrated throughout our platform. Your leadership will be vital in ensuring that each line of code and deployment contributes to a secure and resilient system.About YouYou are a skilled engineer with extensive experience in the AWS Cloud. Your expertise includes architecting and securing AWS-based infrastructures, complemented by strong programming skills in Golang, Node.js, or Python.Security is at the forefront of your approach, covering areas from vulnerability management and system hardening to security automation and architecture. You possess a proactive mindset, capable of taking initiative and driving projects forward.

Role Overview Canva is hiring a Security Engineer for the Trust & Safety team in Sydney. This role centers on protecting users and maintaining a secure platform. The position involves working closely with teams across the company to put effective security measures in place. What You Will Do Identify and assess security vulnerabilities impacting users and the platform Collaborate with other teams to design and implement security solutions Help develop and promote security best practices throughout the organization Respond to and mitigate threats as they arise About You Experienced in security engineering, ideally with a focus on trust and safety Comfortable working with cross-functional teams Skilled at spotting vulnerabilities and addressing security risks

About Australian Payments Plus Australian Payments Plus (AP+) is shaping the future of payments in Australia. The team delivers solutions that support businesses, government, and consumers, including a domestic debit network, real-time payments infrastructure, secure bill payments, digital identity verification, QR payments, and open wallet services. Role Overview: Senior Cyber Security Engineer This Sydney-based role focuses on protecting AP+ payment services across both cloud and on-premise environments. The Senior Cyber Security Engineer designs, develops, and implements enterprise security controls and platforms. As the technical escalation point, this person also sets platform roadmaps, mentors other engineers, and drives risk reduction through secure-by-design engineering, automation, and detection and response improvements. Main Responsibilities Architect and engineer security solutions, setting reference patterns and guardrails for cloud, network, endpoint, and application security. Oversee platform roadmaps and manage the lifecycle for EDR/XDR, SIEM/SOAR, vulnerability management, secrets/PKI/KMS, PAM/IAM, and vendor/MSSP relationships. Develop detection engineering strategies, including use cases and SOAR playbooks; monitor detection metrics such as precision, recall, and dwell time. Support major incident response, coordinating cross-team actions, conducting root cause analysis, and implementing system hardening. Manage exposure and vulnerability assessments, prioritize risks, enforce SLA compliance, and oversee exception governance. Promote DevSecOps practices, secure CI/CD pipelines and Infrastructure as Code, and enhance security for containers and Kubernetes environments. Strengthen identity and access management by defining standards for PAM, JIT, and JEA, and automating joiner, mover, and leaver processes. Ensure compliance by mapping and evidencing controls to frameworks such as ISO 27001, ASD Essential Eight, PCI DSS, and APRA CPS 234; prepare for audits. Conduct security design reviews, provide sign-off for high-risk designs, and advise senior stakeholders. Scale security efforts through automation and mentorship, developing reusable modules and policies (using Terraform, Python, or PowerShell) and building engineering capability across the team.

At MYOB, we are at the forefront of providing innovative business management solutions with a pivotal mission: enabling businesses across Australia and New Zealand to not only start but also thrive and succeed.We firmly believe that what benefits one business ultimately benefits all—owners, employees, customers, suppliers, and even families. Our commitment is to equip each individual in business with the essential tools needed to concentrate on what truly matters and achieve significant milestones—whatever those milestones may look like.Joining MYOB means becoming part of a transformative journey. It’s about leveraging your expertise to empower businesses, shaping the future of work, and evolving alongside the communities we serve. While we specialize in software, our true focus is on people. This is what makes MYOB Everyone’s Business.About the RoleBecome an integral member of our Security team as a Principal Product Security Engineer. In this pivotal role, you will aid our Engineering teams in delivering secure software promptly. Your contributions will facilitate a shift-left approach to security and innovate security principles while securing emerging technologies.You will be involved in enhancing internal tools, conducting architecture reviews, developing strategies, identifying risks through threat modeling, and mentoring engineers on effective remediation techniques.Who You Are:You are a seasoned security professional adept at collaborating with engineering teams to enhance security across cloud-based products. You blend hands-on technical expertise with the ability to influence, educate, and promote scalable security advancements.Demonstrated experience in security roles supporting cloud-based services, with a robust understanding of application and product security, including OWASP Top 10, CWE/SANS Top 25, and compliance frameworks like NIST, PCI DSS, and ISO 27001.A secure-by-design mindset, capable of devising pragmatic security solutions that meet domain-specific needs and influencing developers towards secure adoption.Excellent communication skills, enabling engagement with diverse audiences, bridging knowledge gaps, and enhancing overall security comprehension.Expertise in security assurance, encompassing solution design reviews, compliance assessments, ad-hoc source code reviews, and security maturity evaluations.Hands-on and technically proficient, comfortable with reading or writing code, introducing security concepts (e.g., canary deployments, feature/launch flags), and assisting peers with security inquiries.A proactive focus on continuous improvement, identifying patterns, trends, automation, frameworks, and tools to bolster code and data security, thriving in fast-paced, collaborative environments with a customer-first approach.

Join Canva as a Security Engineer Intern for the 2026/27 cycle! This is an exciting opportunity to gain hands-on experience in a dynamic environment focused on enhancing our security measures. As part of our team, you'll work closely with experienced engineers to monitor, identify, and mitigate security risks while contributing to the overall safety of our platform.