What you’d be doing in this role

We’re looking for a GTM Security Analyst to join our growing team and support Canva’s enterprise sales motion. In this highly collaborative and visible role, you’ll help build trust with our customers by guiding them through our security practices during the sales journey. You’ll be at the heart of managing inbound customer security requests, crafting clear and thoughtful documentation, and ensuring timely and accurate responses to customer assessments. Reporting to the GTM Security & Trust Lead, this role will be instrumental in helping our team scale trust, meet regulatory and customer needs, and empower our GTM teams to move confidently and quickly.

‍

‍

At the moment, this role is focused on:

• Partnering with Canva’s Security team to build a strong understanding of our security posture and practices, including how we approach AI and data handling
• Acting as the primary point of contact for all go-to-market-related security questions and customer needs
• Leading customer security calls and working directly with customer IT and security leaders to address their questions and concerns, particularly around Canva’s use of AI and related security and privacy controls
• Coordinating and supporting responses to customer security inquiries, including RFPs, due diligence assessments, and questionnaires, while identifying opportunities to improve and automate processes
• Maintaining and enhancing intake processes for customer assessments, ensuring timely and high-quality responses
• Working closely with internal teams and subject matter experts to keep our security knowledge base current and accessible, especially in areas related to AI and evolving security standards
• Managing customer audit requests from end to end, ensuring alignment with internal teams and customer expectations
• Tracking and reporting on relevant metrics to demonstrate impact

‍

‍

What we're looking for:

• Three or more years of experience in Security GRC or a related role, ideally with exposure to supporting sales teams
• Familiarity with key certifications and frameworks such as ISO 27001 and SOC 2
• A solid understanding of AI technologies and the security and privacy considerations involved in deploying AI features
• Working knowledge of privacy regulations, including GDPR and CCPA
• Experience working with cloud platforms, especially AWS, and an understanding of associated security controls
• Strong analytical skills paired with a proactive problem-solving mindset
• Excellent communication skills with the ability to translate complex technical topics into clear and customer-friendly language
• A self-starter who thrives in both independent and collaborative team environments

‍