• Independent monitor and manage vulnerabilities across Tenable, Wiz, Defender for Cloud, and other platforms. • Lead the assessment of reported vulnerabilities, triage them, and rank them by risk and other mitigating control factors. • Set a strategic prioritization schedule for remediation and work with patching teams to ensure timely patching. • Proficiency with ticketing tools, raising appropriate patch requests, keeping record of the pending requests, following them up on regular basis and tracking them down till resolution. • Manage risk exception procedures and ensure tools exclude findings with granted risk exceptions. • Stay at the forefront of vulnerability trends and provide recommendations for improving vulnerability management processes. • Manage CSPM components to ensure the security of cloud environments, including continuous security assessments, risk prioritization, compliance monitoring, and configuration management. • Detect and address gaps in scan coverage to ensure comprehensive vulnerability assessments. • Generate reports and deliver presentations on vulnerability assessments and remediation progress. • Mentor and train junior team members, fostering skill development and knowledge-sharing. • Contribute to the overall security strategy and engage with executive leadership to enhance security resilience. • Collaborate with cross-functional teams to address complex security issues and ensure effective vulnerability management.

• Lead high-complexity investigations involving sophisticated techniques and potential legal or regulatory considerations • Coordinate closely with Legal, People, and Security teams on investigation scope, evidence handling, privacy considerations, and response activities • Write detailed investigation reports documenting findings, evidence, impact, and recommendations for technical and non-technical stakeholders • Respond to security events from detection through to containment, remediation, and resolution • Create and improve detection logic, correlation rules, and alerts across SIEM and EDR platforms • Proactively run threat hunting and anomaly detection exercises across Canva’s environment • Design and improve scalable tooling, workflows, and operational processes that strengthen Canva’s incident detection, investigation, and response capabilities • Act as an escalation point and incident coordinator during active investigations and security incidents • Participate in a collaborative on-call rotation supporting critical security investigations and incident response activities • Mentor and support the growth of teammates through knowledge sharing, operational guidance, and investigation best practices

About Boomi and What Makes Us Special Are you ready to work at a fast-growing company where you can make a difference? Boomi aims to make the world a better place by connecting everyone to everything, anywhere. Our award-winning, intelligent integration and automation platform helps organizations power the future of business. At Boomi, you’ll work with world-class people and industry-leading technology. We hire trailblazers with an entrepreneurial spirit who can solve challenging problems, make a real impact, and want to be part of building something big. If this sounds like a good fit for you, check out boomi.com or visit our Boomi Careers page to learn more. Join us as a Cloud Security Engineer The Software Engineering team delivers next-generation application enhancements and new products for a changing world. Working at the cutting edge, we design and develop software for platforms, peripherals, applications and diagnostics — all with the most advanced technologies, tools, software engineering methodologies and the collaboration of internal and external partners. What you will do As part of the Cyber Security Engineering job family, you will be the expert in securing Boomi's multi-cloud environment. You will design and implement robust security controls for our infrastructure-as-a-service (IaaS) and platform-as-a-service (PaaS) deployments, focusing on governance, identity, network security, and data protection in the cloud. You will also manage and optimize Cloud Security Posture Management (CSPM) tools. You will: - Minimum 5+ years of experience in cloud computing, with 3+ years specifically in cloud security engineering (AWS, Azure, or GCP). - Expertise in cloud native security controls, IAM, and infrastructure-as-code (e.g., Terraform). - Experience configuring network security controls, including WAFs, security groups, and cloud firewalls. - Solid understanding of security monitoring, logging, and incident response within a cloud environment. What you’ll need to succeed in this role - 5+ years of experience. - Bachelor’s degree in information technology or a related field. - AWS Certified Security – Specialty or Azure Security Engineer Associate. Additional experience desired Experience with multi-cloud environments and unified CSPM platforms. Familiarity with FedRAMP or other highly regulated cloud compliance standards. #LI-AS1 Be Bold. Be You. Be Boomi. We take pride in our culture and core values and are committed to being a place where everyone can be their true, authentic self. Our team members are our most valuable resources, and we look for and encourage diversity in backgrounds, thoughts, life experiences, knowledge, and capabilities. All employment decisions are based on business needs, job requirements, and individual qualifications. Boomi strives to create an inclusive and accessible environment for candidates and employees. If you need accommodation during the application or interview process, please submit a request to talent@boomi.com. This inbox is strictly for accommodations, please do not send resumes or general inquiries.

• Design, build, and maintain secure Linux-based operating system components • Own end-to-end CVE remediation across Linux OS packages and system libraries • Analyze vulnerabilities affecting core OS components • Validate upstream fixes and determine patching or backporting strategies • Build and maintain secure, minimal, production-ready container images • Generate and maintain SBOMs for OS packages and container images • Design and scale automated pipelines for OS patching, package rebuilding, and image generation • Partner with platform, DevOps, infrastructure, and security teams