Manager, Application Security

Clio is more than just a tech company–we are a global leader that is transforming the legal experience for all by bettering the lives of legal professionals while increasing access to justice.

Summary:

We are currently seeking a Manager, Application Security to join our rapidly growing Application Security team at Clio. This role is for someone who is passionate about building scalable security solutions and being exposed to multiple challenges and technologies while making a massive impact on the legal industry. This role is available to candidates across Canada and the US. If you are local to one of our hubs (Burnaby, Calgary, or Toronto) you will be expected to be in office minimum twice per week on one of our Anchor Days.

The Application Security team is responsible for securing Clio’s applications, developers, and codebase. We work hard to enable our developers to ship secure software at scale while being an empathetic, collaborative team, focused on context and iterating towards secure solutions. 

We find and fix code-level vulnerabilities, in addition to building internal security tooling, deploying code scanning tools, threat modeling, and vulnerability remediation. If you're passionate about security and working on innovative solutions with a modern approach, we should definitely chat!

We’d love to have you apply, even if you don't feel you meet every single requirement in this posting. At Clio we believe anyone can learn security, not just those who have checked off all the requirements.

A day in the life might look like:

• Hire, mentor, and grow a team of Offensive Application Security engineers;

• Define the long-term roadmap for the offensive security team;

• Collaborate with other Clio teams to help develop products or features leveraging secure development practices;

• Lead security incidents, recovery, and remediation efforts, along with post-incident forensics;

• Participating in due diligence during acquisitions to assess product and organizational security postures;

• Triaging and administering our Bug Bounty program;

What you'll be doing:

• Code framework level solutions to provide blessed path tooling for developers and proactively prevent security flaws;

• Drive security awareness and knowledge amongst the product organization;

• Provide detailed guidance and support to teams in vulnerability remediation;

• Build, write rules, and implement tools for automated application scanning, static analysis and custom tooling;

• Perform penetration testing and proactive research to detect new attack vectors;

• Perform reactive incident response and remediation when a security event occurs;

• Project manage effectively by motivating the team, ensuring they meet and exceed targeted goals and objectives;

• Elevate and educate our security culture within Clio, contributing to our cultural values of “Win and Help Win” and “Get Better Every Day;"

Serious bonus points: 

• Experienced security leader with software development background;

• Experience working with full-stack developers;

• Security certifications like OSCP, OSWE, etc;

• Prior experience with Ruby, Rails, Python, and/or Django applications;

What you will find here:

Compensation is one of the main components of Clio’s Total Rewards Program. We have developed a series of programs and processes to ensure we are creating fair and competitive pay practices that form the foundation of our human and high-performing culture.
 

Some highlights of our Total Rewards program include:

• Competitive, equitable salary with top-tier health benefits, dental, and vision insurance 

• Hybrid work environment, with expectation for local Clions (Vancouver, Calgary, Toronto, and Dublin) to be in office minimum 2 days per week on our Anchor Days. 

• Flexible time off policy, with an encouraged 20 days off per year.

• $2000 annual counseling benefit

• RRSP matching and RESP contribution 

• Clioversary recognition program with special acknowledgement at 3, 5, 7, and 10 years​

The full salary range* for this role is $172,000 to $215,000 to $258,000 CAD.Please note there are a separate set of salary bands for other regions based on local currency.

*We aim to hire all candidates between the minimum and the midpoint of the full salary range. We reserve the midpoint to the maximum of the salary band for internal employees who demonstrate sustained high performance and impact at Clio. The final offer amount for this role will be dependent on individual experience and skillset of the candidate. Please note there are a separate set of salary bands for other regions based on local currency.

Diversity, Inclusion, Belonging and Equity (DIBE) & Accessibility 

Our team shows up as their authentic selves, and are united by our mission. We are dedicated to diversity, equity and inclusion. We pride ourselves in building and fostering an environment where our teams feel included, valued, and enabled to do the best work of their careers, wherever they choose to log in from. We believe that different perspectives, skills, backgrounds, and experiences result in higher-performing teams and better innovation. We are committed to equal employment and we encourage candidates from all backgrounds to apply.

Clio provides accessibility accommodations during the recruitment process. Should you require any accommodation, please let us know and we will work with you to meet your needs.

Learn more about our culture at clio.com/careers