Senior Infrastructure Security Engineer

Clio is the global leader in legal AI technology, empowering legal professionals and law firms of every size to work smarter, faster, and more securely.

We are transforming the legal experience for all by bettering the lives of legal professionals while increasing access to justice.

Summary: We are currently seeking a Senior Infrastructure Security Engineer to join our rapidly growing Security team. This role is for someone passionate about building proactive security solutions, implementing detection capabilities, and driving security automation at scale.

You will be exposed to new challenges and technologies while making a tangible impact. This role is available to candidates across Canada (excluding Quebec). If you are local to one of our hubs (Burnaby, Calgary, or Toronto) you will be expected to be in office minimum two days per week for our Anchor Days.

Who you are: Are you someone who’s always probing and asking why, someone who enjoys finding smarter and more efficient solutions to problems? If so, we have a spot for you on Clio’s security team!

We are looking for the right candidate to develop and run our security architecture and engineering program, and be an advocate and advisor for security overall. If you have a strong operations background with a passion for security and experience in cloud-first environments, then we want to talk to you.

A day in the life might look like:

• Implement and maintain security controls across AWS/Azure, focusing on EKS/AKS cluster security, EC2 hardening, and cloud-native protection
• Partner with the cloud security manager to plan and develop the team’s road map
• Develop and tune rules for cloud-specific threats, manage GuardDuty/Defender integration, and build automated response workflows
• Investigate potential security incidents and serve as initial incident responder
• Provide architectural guidance for securing our user environments and maintaining a good security posture
• Secure Kubernetes workloads, implement pod security standards, and integrate security scanning into CI/CD pipelines
• Stay up-to-date with current methods of cloud compromise, tools, tactics, and procedures
• Work in a small team where you can make a big impact

What you may have:

• Cloud Security expertise with 3+ years in securing AWS environments
• Hands-on expertise with Kubernetes and/or EKS, including autoscaling, CI/CD, and automation
• Adept at using IaC technologies like Terraform, Puppet, CloudFormation, or Ansible
• Skilled in securing cloud infrastructure such as AWS, GCP/GSuite, GitHub, and IdP
• Familiarity in a cloud-first organization, including experience with AWS and/or GCP
• Ability to program in a dynamic programming language: Python, Ruby
• Strong understanding of threat vectors, indicators of compromise, malicious behaviour identification, and emerging threat analysis.
• Strong Linux experience
• Demonstrate a keen interest in improving your craft by using AI

Serious bonus points if you have:

• Strong Azure and/or GCP security experience to go with your AWS Experience
• Any security certifications such as AWS Security Specialist, OSCP, CKS, GCPN, CISSP or others
• Experience with Ruby on Rails, Puppet, Terraform, ELK (Elastic/OpenSearch, Logstash and Kibana)
• Infrastructure security (firewalls, ACLs, authentication, device hardening)
• Container Security Tools familiarity with Falco, OPA/Gatekeeper, container image scanning, and runtime protection

This role is a backfill for an existing position.

What you will find here:

Compensation is one of the main components of Clio’s Total Rewards Program. We have developed a series of programs and processes to ensure we are creating fair and competitive pay practices that form the foundation of our human and high-performing culture.

Some highlights of our Total Rewards program include:

• Competitive, equitable salary with top-tier health benefits, dental, and vision insurance
• Hybrid work environment, with expectation for local Clions (Vancouver, Calgary, Toronto, Dublin, London, New York City and Sydney) to be in office min. twice per week.
• Flexible time off policy, with an encouraged 20 days off per year.
• $2000 annual counseling benefit
• RRSP matching and RESP contribution
• Clioversary recognition program with special acknowledgement at 3, 5, 7, and 10 years

The expected salary range* for this role is $149,600 to $176,000 to $202,400 CAD. There are a separate set of salary bands for other regions based on local currency.

• Our salary bands are designed to reflect the range of skills an