We value inclusivity and diversity at Envato. Research shows candidates from neurodiverse and underrepresented backgrounds often only apply for roles if they meet all the criteria. We like to make our hiring decisions based on experience and passion, so if you’re keen to apply and need reasonable adjustments please let us know. We also encourage you to let us know the pronouns you use at any point during the recruitment process.
About Envato
Our focus is on helping people to complete their creative projects, with our author community earning every time that happens. Envato proudly impacts the lives of creatives all over the world, from web developers and graphic designers to marketers, videographers, photographers, and more. We’ve built a community where anyone can get their creative projects done, and where creators bring their ideas to life and in the process, earn a living doing what they love. It doesn’t get much better than that!
We are a global and rapidly scaling business. Blending purpose and profit, we're a passionate B Corp, committed to making a positive impact on the communities we engage in. You can read more about our purpose, mission, and values on our website.
We’ve embraced flexibility for a long time - where we can, let’s make work, work for you! We have an amazing office in the Colonia Americana neighborhood in Guadalajara, Jalisco, Mexico.
About Us
At Envato, we empower designers and creatives to do their best work and to bring their creative ideas to life! Millions of people around the world visit Envato to buy and sell professionally made creative assets and templates, use customisable mockups and design templates, and learn creative skills.
We’re B Corp certified and strongly believe in succeeding sustainably as one global team. Community spirit is at the heart of everything we do which means we give considered thought to our whole community in our decisions, our actions, and desired outcomes. This includes our team, our authors, customers, shareholders and society.
Role Purpose
The Security Operations team plays a crucial role within the IT Operations & Technology Experience department, which is part of the Technology division supporting Envato employees across Australia, New Zealand, Mexico, and the United States.
The purpose of the IT Operations & Technology Experience is to provide sustainable and secure high quality technology experiences that enable staff to succeed. Productive and secure day one and always.
Role Overview
Reporting to the Senior IT Operations & Technology Experience Manager, the Senior Security Engineer will take the lead in securing the organisation's IT infrastructure, applications, and data. Collaborating with Security Analysts, Managed Security Service Provider (MSSP), and the IT Systems Operations and Product Security teams. -
Key Duties and Responsibilities
Security Monitoring & Incident Response
- Optimise and fine-tune SIEM rules, policies, and thresholds in collaboration with the MSSP.
- Lead incident response efforts, including containment, mitigation, and resolution.
- Conduct post-incident analysis, forensic investigations.
- Security automation (SOAR) implementation.
- Monitor and investigate security alerts from EDR, DLP, and email security tools.
SaaS & Identity Security
- Oversee security configurations for SaaS applications (Google Workspace, Slack, Okta, etc.).
- Manage authentication policies and access controls within SaaS tools and IAM.
- Conduct security audits and ensure SaaS tools align with compliance requirements.
Endpoint, Network, and Email Security
- Manage and secure endpoint protection (EDR), antivirus, firewalls, and VPN security.
- Enforce network security best practices and assist in vulnerability management efforts.
- Oversee email security configuration, phishing prevention, and spam filtering.
Compliance & Risk Management
- Perform security audits and risk assessments for systems, vendors, and applications.
- Collaborate with leadership to develop and implement risk mitigation strategies, ensure PCI and SOX compliance, and maintain GDPR regulatory compliance through proactive security control monitoring.
Vendor Collaboration & Continuous Improvement
- Participate in security vendor meetings (MSSP, Crowdstrike, and others) to enhance security posture.
- Stay up-to-date on industry trends, security threats, and best practices.
Be aware and accountable to your responsibilities in relation to workplace health and safety obligations.
Key Skills and Experience
- 5+ years of experience in IT security or cybersecurity engineering.
- Proficiency with SIEM tools (Sumo Logic) and SOC operations.
- Hands-on experience with EDR, DLP, firewalls, VPNs, IAM, and security automation.
- Ideally experience in fast growing digital companies, requiring agile planning to manage fast growing operations.
- Familiarity with a variety of information security standards and frameworks, (e.g PCI/DSS, NIST Cybersecurity Framework, ISO27001).
- Familiarity with current and evolving international privacy obligations (e.g. Australian Privacy Principles, European Privacy principles: DPD, GDPR, EU-US-Shield..etc)
- Experience securing SaaS tools and applications.
- Scripting and automation skills (Ruby, Python) preferred.
- Relevant industry certifications (CISSP, CISM, CEH, GCIH, or equivalent) preferred.
#LI-Remote
What we offer?
● 30 days - Christmas Bonus
● 12 vacation days (from the first year)
● 100% holidays bonus
● Private Health Insurance (SGMM)
● 5% Grocery Coupons (With legal cap)
● 5% Savings Funds (Fondo de Ahorro)
● Internet/electricity allowance (monthly paid)
• Profit-share, Mexican entity
● Round trip tickets around Mexico to a place you haven’t been twice a year.
● Unlimited ebooks
● Paid for educational courses that relate to your work
● Top line equipment
What next?
Submit your resume and answers to the below questions. Good luck!
About Us
- We’re BCorp certified & believe in succeeding sustainably as one global team.
- We’re committed to ensuring all our team feel welcome, included, and respected
- We support the flexibility to work from anywhere, great benefits above the law, generous parental leave, wellness programs, social connection and learning opportunities to help you grow.
By submitting your application you are agreeing to our Privacy Policy. If you would like to understand how we handle personal information before submitting your application, please read through our Privacy Policy.
We appreciate the time you’ve taken to apply to Envato and we're committed to responding to every applicant.
Top Skills
What We Do
Hi there! We're so happy you found us. Founded in a Sydney garage in 2006, Envato was born from a desire to make a positive impact. Now, 15 years later, we remain independently owned and committed to creating opportunities for our creatives to thrive. As a proud B Corp, we focus on a long-term vision, balancing purpose and profit for sustainable growth. We’re one of the world’s leading online creative communities for creative assets and tools. We provide genuine opportunities for creators worldwide to create, earn and grow. In the process, we're striving to make creative success accessible and achievable for all, both independently and as part of a global community. There are many ways to work, and flexibility is key. A remote-first culture is in our DNA, and wherever our people are in the world, we pledge to provide a unique and caring work environment. We have offices in Melbourne, Guadalajara, and Los Angeles, with over 600 people worldwide. From engineers and product owners to designers and marketers, our global and diverse teams are packed with talented and creative individuals who are fiercely passionate about working in a values-driven business. Envato is about more than just the bottom line. It’s work made with heart.
