Leading the Application Security team at Clio, focusing on building scalable security solutions. Collaborating across teams and leading security initiatives in a hybrid work environment.
Responsibilities
Hire, mentor, and grow a team of Offensive Application Security engineers
Define the long-term roadmap for the offensive security team
Collaborate with other Clio teams to help develop products or features leveraging secure development practices
Lead security incidents, recovery, and remediation efforts, along with post-incident forensics
Participating in due diligence during acquisitions to assess product and organizational security postures
Triaging and administering our Bug Bounty program
Code framework level solutions to provide blessed path tooling for developers and proactively prevent security flaws
Drive security awareness and knowledge amongst the product organization
Provide detailed guidance and support to teams in vulnerability remediation
Build, write rules, and implement tools for automated application scanning, static analysis and custom tooling
Perform penetration testing and proactive research to detect new attack vectors
Perform reactive incident response and remediation when a security event occurs
Project manage effectively by motivating the team, ensuring they meet and exceed targeted goals and objectives
Elevate and educate our security culture within Clio, contributing to our cultural values
Requirements
Experienced security leader with software development background
Experience working with full-stack developers
Security certifications like OSCP, OSWE, etc.
Prior experience with Ruby, Rails, Python, and/or Django applications
Benefits
Competitive, equitable salary with top-tier health benefits
Dental and vision insurance
Hybrid work environment, with expectation for local Clions to be in office min. twice per week
Flexible time off policy, with an encouraged 20 days off per year
$2000 annual counseling benefit
RRSP matching and RESP contribution
Clioversary recognition program with special acknowledgement at 3, 5, 7, and 10 years
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.