Clio is more than just a technology company – we are a global leader working to transform the legal experience for everyone Improving the lives of workers in the legal field while Increase access to justice.

summary:

We are currently looking for a Senior Cloud Security Engineer to join our rapidly growing Security team. This role is for someone passionate about building proactive cloud security solutions, implementing advanced detection capabilities, and driving security automation at scale through infrastructure-as-code and policy-based security. You will be exposed to the latest cloud security challenges and technologies while making a tangible impact on our security architecture.

This role is available to candidates across Canada (except Quebec). If you are local to one of our centers (Burnaby, Calgary, or Toronto), you will be expected to be in the office at least two days a week during our installation days.

What your team does:

Are you someone who always wonders and wonders why, or someone who enjoys finding smarter, more effective solutions to cloud security challenges? If so, we have a place for you on the Clio security team! We are looking for the right candidate to develop and run our cloud security architecture and engineering program, and be an advocate and advisor for overall cloud native security. If you have a strong background in cloud operations, a passion for security, and deep experience using Infrastructure as Code security, we want to talk with you.

Who are you:

• Thrive in working within a small team where you can make a big impact on the cloud security landscape
• Passionate about infrastructure as code security, policy-based security, and cloud governance
• Continuously look for better and more efficient ways to secure cloud workloads through automation
• Excel at building security automation using Terraform, policy engines, and security guardrails
• Enjoy the hustle and bustle of working in a successful, fast-growing organization with complex cloud environments
• Show a keen interest in improving your career using artificial intelligence

A day in the life might look like this:

• Designed and implemented security-focused Terraform modules and enforced security policies across cloud infrastructure deployments
• Design and maintain cloud security guardrails using Open Policy Agent (OPA), AWS Config rules, Azure Policy, and GCP enterprise policies
• Build security automation pipelines that integrate Terraform security scanning, policy validation, and compliance checks
• Partner with the Cloud Security Manager to develop strategic cloud security architecture and Infrastructure as Code Governance
• Develop custom security policies for cloud resources, and implement default security configurations in Terraform providers
• Lead cloud security incident response, conduct in-depth investigations, and automate the remediation process
• Establish and maintain security baselines for cloud accounts, and implement preventive controls through policy and code
• Secure Kubernetes deployments with Terraform, implement acceptance controllers, and integrate security scanning into your GitOps workflow
• Drive security compliance automation using Infrastructure as Code for SOC2, ISO 27001, and other frameworks
• Mentor junior team members on cloud security best practices and Infrastructure as Code security patterns

What you may have:

• High-level cloud security experience in securing multi-cloud environments through Infrastructure as Code
• Advanced Terraform capabilities including custom service providers, security modules, policy integration, and state management security
• Experience with policy as code with Open Policy Agent (OPA), Rego, AWS Config, Azure Policy, or GCP Enterprise Policies
• Cloud security engineering experience in designing secure strategies for multiple accounts/subscriptions and landing zones
• DevSecOps leadership implements security-prioritized CI/CD pipelines, GitOps security, and shift-left security practices
• Infrastructure for building cloud compliance automation infrastructure as code solutions for regulatory compliance and governance
• Advanced scripting and automation in Python, Ruby, Go, or similar to automate complex security and policy enforcement
• In-depth container security including hardening Kubernetes security, admission controllers, and runtime security policies
• Cloud governance experience with multiple cloud security policies, cost security optimization and resource management
• Lead security incident response in cloud environments through automation and game development

Serious bonus points if you have:

• Infrastructure as code security certifications such as Terraform Associate/Professional, CKS, or HashiCorp Security certifications
• Policy engine experience with advanced OPA/Gatekeeper, Sentinel, or Cedar policy development
• Cloud security platform integration with Terraform providers for Prisma Cloud, Wiz, Lacework, or similar CNAPP tools
• Multi-cloud governance experience implementing consistent security policies across AWS, Azure, and GCP using Terraform
• Experience with security automation frameworks with custom Terraform providers, policy testing frameworks, and security validation pipelines
• Cloud penetration testing using infrastructure as code attack vectors and cloud configuration security assessments
• Advanced compliance automation that implements continuous compliance monitoring through infrastructure as code
• Technical mentoring and leadership experience leading cloud security engineering teams and setting security standards
• Open source contributions to Terraform security modules, OPA policies, or cloud security tools

What you will find here:

Compensation is a key component of Clio’s Total Rewards program. We have developed a series of programs and processes to ensure we create fair and competitive pay practices that form the foundation of our humane, high-performance culture.

Some highlights of our Total Rewards program include:

• Competitive and fair salary with top-notch health benefits, dental and vision insurance
• A mixed working environment, with local Clions (Vancouver, Calgary, Toronto and Dublin) expected to be in the office at least two days a week on our installation days.
• Flexible leave policy, with 20 days off per year encouraged.
• Annual consulting benefit is $2000
• RRSP matching and RESP contribution
• Cleoversary recognition program with special recognition at 3, 5, 7 and 10 years

The full salary range* for this role is $146,200 USD to $172,000 USD to $197,800 CAD. Please note that salary ranges may vary based on location and local currency. Additionally, benefit offerings may vary depending on the employee’s location.

*We aim to hire all candidates between the low end and midpoint of the full salary range. We reserve the midpoint to the high end of the salary range for internal employees who demonstrate high performance and sustained impact at Clio. The final offer amount for this role will depend on the individual experience and skill set of the candidate. Please note that there is a separate set of salary ranges for other regions based on the local currency.

Diversity, Inclusion, Belonging, and Equity (DIBE) and Accessibility

Our team shows who we are, united by our mission. We are committed to Diversity, equity and inclusion. We take pride in building and fostering an environment where our teams feel included, valued and empowered to do the best work of their careers, wherever they choose to sign on from. We believe that different perspectives, skills, backgrounds and experiences lead to higher performing teams and better innovation. We are committed to equal employment opportunity and encourage candidates from all backgrounds to apply.

Clio provides accessibility during the recruitment process. If you need any accommodations, please let us know and we will work with you to meet your needs.

Learn more about our culture at clio.com/careers

Disclaimer: We only communicate with candidates through official @clio.com email addresses.