Clio is more than just a tech company–we are a global leader that is transforming the legal experience for all by bettering the lives of legal professionals while increasing access to justice.

Summary: We are currently seeking a Cloud Security Engineer to join our rapidly growing Security team. This role is for someone passionate about building proactive cloud security solutions, enabling advanced threat detection capabilities, and driving security automation at scale across multi-cloud environments. You will be exposed to cutting-edge cloud security challenges and technologies while making a tangible impact on our security posture.

This role is available out of any one of our hub locations (Burnaby, Calgary, or Toronto). All hub-based Clions are expected to be in office minimum twice per week on one of our Anchor Days.

What your team does:

Are you someone who's always probing and asking why, someone who enjoys finding better and more efficient solutions to cloud security challenges? If so, we have a spot for you on Clio's security team! We are looking for the right candidate to develop and run our cloud security architecture and engineering program, and be an advocate and advisor for cloud-native security overall. If you have a strong cloud operations background with a passion for security and experience in securing cloud-first environments, then we want to talk to you.

Who you are:

• Thrive working in a small team where you can make a big impact on cloud security posture
• Passionate about cloud-native security, zero-trust architecture, and container orchestration security
• Continually seek better, more efficient ways to secure cloud workloads and infrastructure
• Excel at building cloud security automation and advanced threat detection capabilities
• Enjoy the hustle of working in a fast growing successful organization with complex cloud environments
• Demonstrate a keen interest in improving your craft by using AI

A day in the life might look like:

• Design and implement comprehensive security controls across AWS/Azure/GCP, focusing on identity and access management, network security, cloud security policies and data protection
• Partner with the cloud security manager and senior engineers to plan and develop the team's cloud security roadmap and strategy
• Architect and deploy cloud-native security solutions including CSPM, CWPP, and CNAPP platforms
• Build and maintain security automation for cloud resource provisioning, compliance monitoring, and incident response
• Investigate cloud security incidents, perform threat hunting, and serve as cloud security incident responder
• Stay up-to-date with current cloud attack vectors, threat intelligence, and emerging cloud security technologies
• Provide security architectural guidance for cloud migrations, microservices deployments, and DevSecOps initiatives
• Secure Kubernetes and container workloads, implement zero-trust networking, and integrate security into CI/CD pipelines
• Conduct cloud security assessments, penetration testing, and vulnerability management across cloud environments

What you may have:

• Cloud Security expertise in securing multi-cloud environments (AWS, Azure, GCP) at an intermediate level
• Cloud-native security tools experience with CSPM platforms, cloud security scanners, and threat detection services
• Identity and Access Management expertise including IAM policies, service accounts, RBAC, and identity federation
• Container and Kubernetes security including pod security standards, network policies, admission controllers, and runtime protection
• Infrastructure as Code security with tools like Terraform, CloudFormation, Pulumi, and security policy as code
• DevSecOps integration experience embedding security into CI/CD pipelines and shift-left security practices
• Cloud compliance frameworks knowledge of SOC2, ISO 27001, PCI DSS in cloud environments
• Scripting and automation abilities in Python, Ruby, Go, or PowerShell for security automation
• Network security understanding of VPCs, security groups, NACLs, and cloud network segmentation
• Data protection experience with cloud encryption, key management, and data loss prevention

Serious bonus points if you have:

• Multi-cloud security certifications such as AWS Security Specialist, Azure Security Engineer, GCP Security Engineer, CKS, CISSP
• Advanced cloud security tools experience with Prisma Cloud, Wiz, Lacework, Orca Security, or similar CNAPP platforms
• Cloud threat hunting experience with CloudTrail analysis, behavior analytics, and cloud SIEM integration
• Zero-trust architecture implementation experience with cloud-native zero-trust solutions
• Cloud penetration testing and red team experience targeting cloud environments
• Serverless security expertise in securing Lambda, Azure Functions, and cloud-native applications
• Cloud governance experience with cloud security policies, cost optimization, and multi-account/subscription management
• Compliance automation tools and frameworks for continuous compliance monitoring in the cloud

What you will find here: Compensation is one of the main components of Clio’s Total Rewards Program. We have developed a series of programs and processes to ensure we are creating fair and competitive pay practices that form the foundation of our human and high-performing culture.

Some highlights of our Total Rewards program include:

• Competitive, equitable salary with top-tier health benefits, dental, and vision insurance
• Hybrid work environment, with expectation for local Clions (Vancouver, Calgary, Toronto, and Dublin) to be in office minimum 2 days per week on our Anchor Days.
• Flexible time off policy, with an encouraged 20 days off per year.
• $2000 annual counseling benefit
• RRSP matching and RESP contribution
• Clioversary recognition program with special acknowledgement at 3, 5, 7, and 10 years

The full salary range* for this role is $116,500 to $137,000 to $157,500 CAD.Please note salary bands may differ based on location and local currency. Additionally, benefit offerings may differ depending on the employee's location.

• We aim to hire all candidates between the minimum and the midpoint of the full salary range. We reserve the midpoint to the maximum of the salary band for internal employees who demonstrate sustained high performance and impact at Clio. The final offer amount for this role will be dependent on individual experience and skillset of the candidate. Please note there are a separate set of salary bands for other regions based on local currency.

Diversity, Inclusion, Belonging and Equity (DIBE) & Accessibility Our team shows up as their authentic selves, and are united by our mission. We are dedicated to diversity, equity and inclusion. We pride ourselves in building and fostering an environment where our teams feel included, valued, and enabled to do the best work of their careers, wherever they choose to log in from. We believe that different perspectives, skills, backgrounds, and experiences result in higher-performing teams and better innovation. We are committed to equal employment and we encourage candidates from all backgrounds to apply.

Clio provides accessibility accommodations during the recruitment process. Should you require any accommodation, please let us know and we will work with you to meet your needs.

Learn more about our culture at clio.com/careers

Disclaimer: We only communicate with candidates through official @clio.com email addresses.