Senior Application Security Engineer at Clio

Toronto, Ontario, Canada

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Legal TechnologyIndustries

Requirements

Experience in Application Security, with a strong focus on offensive security and penetration testing
Hands-on expertise identifying and exploiting complex vulnerabilities (e.g., SSRF, Deserialization, logic bypasses)
Proven ability to lead and conduct formal threat modeling sessions
Strong proficiency in at least one major programming language (e.g., Python, .NET, JavaScript)
Experience securing applications in modern cloud environments (AWS, Azure, or GCP)
Expertise with common application security tools and platforms (e.g., Burp Suite, SAST, SCA)
Experience with log aggregation and SIEM technologies
Ability to identify malicious behaviour and emerging threats via log analysis

Responsibilities

Write, review, debug, and implement tools to help developers avoid security flaws
Build partnerships with development teams and advise on security best practices
Contribute to collective developer education by driving security awareness and knowledge amongst the product organization
Provide detailed guidance and support to teams in vulnerability remediation, and develop frameworks, guidelines, and systematic fixes for recurring vulnerabilities
Resolve issues, navigate ambiguity, and maintain positive working relationships with researchers in our Bug Bounty program
Identify and implement tools for automated application scanning, static analysis and related tools
Perform penetration testing, and offensive campaigns against internal assets
Perform reactive incident response and forensics when a security event occurs
Perform proactive research to detect new attack vectors
Elevate and educate our security culture within Clio, contributing to our cultural values

Skills

Penetration Testing

Static Analysis

Application Scanning

Incident Response

Digital Forensics

Vulnerability Remediation

Bug Bounty

Security Tools Development

Offensive Security

Security Awareness

Clio

Legal practice management software provider

About Clio

Clio provides legal practice management software that helps law firms operate more efficiently. Its two main products, Clio Grow and Clio Manage, serve different purposes: Clio Grow enhances the client intake process and engagement, while Clio Manage allows firms to organize tasks, manage cases, handle documents, and process payments in one platform. Clio caters to a diverse clientele, from solo practitioners to large firms, and operates on a subscription model, charging users monthly or annually for access to its software. The goal of Clio is to improve the efficiency of legal practices and reduce administrative burdens, ultimately supporting their growth.

Burnaby, CanadaHeadquarters

2008Year Founded

$1,279.9MTotal Funding

SERIES_FCompany Stage

LegalIndustries

1,001-5,000Employees

Benefits

Company equity

401k

Parental leave options and stipend

Flexible paid time off

Stipend to support WFH

Various wellness benefitsand programs

Risks

Emerging AI-driven legal tech startups could challenge Clio's market share.

Staying private may limit Clio's access to public market capital.

Significant investment in AI and expansion may strain Clio's resources.

Differentiation

Clio offers a comprehensive suite for law firm management, including client intake and payments.

Clio's products, Clio Grow and Clio Manage, streamline operations for legal professionals.

Clio's cloud-based platform supports solo practitioners and large law firms alike.

Upsides

Clio raised $900M in 2024, marking the largest Canadian software funding round.

Clio plans to enhance AI capabilities and expand into international markets.

Clio's subscription model generates $200M in annual recurring revenue.

Land your dream remote job 3x faster with AI

Try Jobo Free