Application Security Developer
Back to Jobs
ClioGet Smart Job AI Coach in the appFree on iOS and Android 






Application Security Developer
116,500–157,500 / Year
Location
Toronto • Vancouver • Remote - Canada • Calgary
Experience
Mid
Posted
Jul 10, 2026
Apply by
August 9, 2026
Applicants
0
Early applicantEasy applyFull-timeHybrid
Job Description
Clio is the global leader in legal AI technology, empowering legal professionals and law firms of every size to work smarter, faster, and more securely.
We are transforming the legal experience for all by [bettering the lives of legal professionals](https://www.clio.com/customers/)while [increasing access to justice](https://www.clio.com/customers/california-innocence-project-changes-lives-clio/).
# Summary:
#
What your team does:
We are currently seeking an Application Security Engineer to join our rapidly growing Security team. The Application Security team is responsible for emulating real-world adversaries to proactively discover, exploit, and help remediate critical security vulnerabilities across our applications. We provide a vital adversarial perspective, challenging our defences and partnering with development teams to eliminate flaws before they can be exploited.
This role is for someone who is passionate about building innovative solutions and being exposed to new challenges and technologies while making an impact. This role is available to candidates across Canada (excluding Quebec). If you are local to one of our hubs (Burnaby, Calgary, or Toronto), you will be expected to be in office a minimum of two days per week for our Anchor Days.
## A day in the life might look like:
- Write, review, debug, and implement tools to help developers avoid security flaws;
- Build partnerships with development teams and advise on security best practices;
- Contribute to collective developer education by driving security awareness and knowledge amongst the product organization;
- Provide detailed guidance and support to teams in vulnerability remediation, and develop frameworks, guidelines, and systematic fixes for recurring vulnerabilities;
- Resolve issues, navigate ambiguity, and maintain positive working relationships with researchers in our Bug Bounty program;
- Identify and implement tools for automated application scanning, static analysis and related tools;
- Perform penetration testing, and offensive campaigns against internal assets;
- Perform reactive incident response and forensics when a security event occurs;
- Perform proactive research to detect new attack vectors;
- Elevate and educate our security culture within Clio, contributing to our cultural values;
## What you may have:
- Experience in Application or Product Security, with a focus on offensive security and penetration testing
- Hands-on expertise identifying and exploiting complex vulnerabilities (e.g., SSRF, Deserialization, logic bypasses)
- Proven ability to lead and conduct formal threat modeling sessions
- Strong proficiency in at least one major programming language (e.g., Python, .NET, Ruby, JavaScript)
- Experience securing applications in modern cloud environments (AWS, Azure, or GCP)
- Expertise with common application security tools and platforms (e.g., Burp Suite, SAST, SCA)
- Experience with log aggregation and SIEM technologies
- Ability to identify malicious behaviour and emerging threats via log analysis
- Demonstrate a keen interest in improving your craft by using AI
## Serious bonus points if you have:
- Security certifications such as OSCP or OSWE
- Active participation in the security community (e.g., presenting at conferences, contributing to open-source tools).
- Experience with Ruby on Rails, Puppet, Kubernetes, Terraform, ELK (Elastic, Logtash and Kibana)
- Strong AWS security experience on EC2 and managed services
- Infrastructure security (WAF, ACLs, authentication, device hardening)
What you will find here:
Compensation is one of the main components of Clio’s Total Rewards Program. We have developed a series of programs and processes to ensure we are creating fair and competitive pay practices that form the foundation of our human and high-performing culture.
Some highlights of our Total Rewards program include:
- Competitive, equitable salary with top-tier health benefits, dental, and vision insurance
- Hybrid work environment, with expectation for local Clions (Vancouver, Calgary, Toronto, Dublin, London, New York City and Sydney) to be in office min. twice per week.
- Flexible time off policy, with an encouraged 20 days off per year.
- $2000 annual counseling benefit
- RRSP matching and RESP contribution
- Clioversary recognition program with special acknowledgement at 3, 5, 7, and 10 years
The expected salary range\ for this role is $116,500 to $137,000 to $157,500 CAD. There are a separate set of salary bands for other regions based on local currency.
\Our salary bands are designed to reflect the range of skills and experience needed for the position and to allow room for growth at Clio. For experienced individuals, we typically hire at or around the midpoint of the band. The top portion of the salary band is reserved for employees who demonstrate sustained high performance and impact at Clio. Those who are new to the role may join below the midpoint and develop their skills over time. The final offer amount for this role will be dependent on geographical region, applicable experience, and skillset of the candidate.
Diversity, Inclusion, Belonging and Equity (DIBE) & Accessibility
Our team shows up as their authentic selves, and are united by our mission. We are dedicated to[diversity, equity and inclusion](https://www.clio.com/about/values/). We pride ourselves in building and fostering an environment where our teams feel included, valued, and enabled to do the best work of their careers, wherever they choose to log in from. We believe that different perspectives, skills, backgrounds, and experiences result in higher-performing teams and better innovation. We are committed to equal employment and we encourage candidates from all backgrounds to apply.
Clio provides accessibility accommodations during the recruitment process. Should you require any accommodation, please let us know and we will work with you to meet your needs.
Learn more about our culture at[clio.com/careers](https://www.clio.com/about/careers/)
We're a Human and High Performing AI company, meaning we use artificial intelligence to improve all of our operations. In recruitment, AI helps us streamline the process for greater efficiency. However, we've built our systems to ensure that a human always reviews AI-generated output, and we never make automated hiring decisions.
Disclaimer: We only communicate with candidates through official @clio.com email addresses.
Key Responsibilities
- Write, review, debug, and implement tools to help developers avoid security flaws
- Build partnerships with development teams and advise on security best practices
- Contribute to collective developer education by driving security awareness
- Provide guidance and support for vulnerability remediation and develop systematic fixes
- Resolve issues and maintain relationships with researchers in the Bug Bounty program
- Identify and implement tools for automated application scanning and static analysis
- Perform penetration testing and offensive campaigns against internal assets
- Perform reactive incident response and forensics when security events occur
- Perform proactive research to detect new attack vectors
- Elevate and educate the security culture within the organization
Skills Required
Python.NETRubyJavaScriptAWSAzureGCPBurp SuiteSASTSCASIEMLog analysisThreat modelingPenetration testingStatic analysisCommunicationPartnership buildingProblem solvingAdaptabilityLeadershipRuby on RailsPuppetKubernetesTerraformELKWAFACLsAuthenticationDevice hardeningCommunity participationOpen-source contribution
Benefits
- Competitive salary
- Health insurance
- Dental insurance
- Vision insurance
- Flexible time off policy
- $2000 annual counseling benefit
- RRSP matching
- RESP contribution
- Clioversary recognition program
App exclusive · Free
Smart Job AI Coach
Your personal interview coach on every job — readiness tips, profile improvements, and role-specific prep. Available only in the Pulse Job app.
Interview readiness
See how prepared you are and what to improve for each role.
Personalized tips
Actionable suggestions based on your profile and the job.
After you apply
Keep coaching momentum from job detail through application success.
Similar roles for you
Matched using this role's title and skills. Open the job search anytime to see every listing.

Senior AI Security Engineer
Vertex
Full-timeEasy applyWork from Home
Remote USASenior

Web Developer / Application Security (AppSec) Engineer
Assyst
Full-timeEasy applyWork from Office
Washington DCMid

Senior Java Developer with strong Application Security Focus
Commerzbank
Full-timeHybrid
ŁódźSenior

Application Development Lead, #W5003
Virginia IT Agency
132,000–139,000 / Year
Full-timeEasy applyHybrid
Richmond (City)Senior

Senior DevOps Engineer – Azure Cloud Networking & Platform Engineering
Aequilibrium
130,000–150,000 / Year
Full-timeEasy applyWork from Home
RemoteSenior

Back-End Python Engineer (AWS - Desktop)
Miratech
Full-timeEasy applyWork from Home
ChennaiMid