Staff Software Developer, Security
Remote - CA, USA, United States
Clio is more than just a tech company–we are a global leader that is transforming the legal experience for all by bettering the lives of legal professionals while increasing access to justice.
Summary:We're looking for a Staff Software Developer to join our rapidly growing Application Security team. This role is for someone who is passionate about building innovative solutions and being exposed to new challenges and technologies while making an impact.
This role is available across Canada and the US. If you are local to Burnaby, Calgary, or Toronto, you will be expected to come into the office twice a week.
What your team does:
Our team is focused on protecting our customers and training our developers to write secure code. We’re a collaborative service team that works hard to enable developer velocity. We’re not gatekeepers, we’re enablers! We build automated tooling, monitor and triage CVEs & security bugs, and spend as much time pairing and teaching as we can. We’re interested in individuals with high agency, a sense of curiosity, and the ability to navigate ambiguity. You know when something doesn’t seem right and trust your instinct to dig further.
A day in the life might look like:
Developing, coding, and implementing tools to help developers avoid security flaws
Conducting research proactively to detect new attack vectors
Building partnerships with development teams and advising on security best practices
Driving security awareness and knowledge amongst the product organization
Providing detailed guidance and support to teams in vulnerability remediation
Identifying and implementing tools for automated application scanning, static analysis, and related concepts
Performing penetration testing and reactive incident response when a security event occurs
Elevating and educating our security culture within Clio, contributing to our team values of “Lead with Context” and “Get Better Every Day”
What you may have:
5+ years of experience in some combination of the following disciplines: web application security, cloud security, infrastructure security, penetration testing, secure software development, and/or security tools development
2+ years of experience building complex engineering systems with Ruby
Love of learning, and developing creative security solutions for a CI environment that hits upwards of 150 pull requests merged to production a day!
Serious bonus points if you have:
Experience with pentesting, bug bounty, or other testing disciplines
Ideas on how to successfully scale and grow a progressive security organization
Experience with automating security best practices, and/or building developer-facing tools
#LI-Remote
…
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Hybrid work environment In-office requirement for local employees
Benefits/Perks401(k) matching Competitive pay Competitive salary EAP benefits Flexible time off Flexible time off policy Health benefits High-performing culture Hybrid work Hybrid Work Environment Recognition program Top-tier health benefits Total Rewards Program Vision Insurance
Tasks- Conduct research
- Develop tools
- Drive security awareness
- Incident response
- Perform penetration testing
Analysis Best Practices Bug bounty Cloud Security Coding Engineering Incident Response Infrastructure Infrastructure Security Innovation Penetration Testing Recruitment Ruby Secure software development Security Best Practices Software Development Static Analysis Testing Training Vulnerability Remediation Web application security
Experience5 years
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9