Senior Application Security Developer

Clio


1 month ago

06/17/2019 10:21:23

Job type: Full-time

Hiring from: Vancouver or Calgary

Category: Software Dev


We are currently seeking a Senior Application Security Developer to join our Information Security team.  Are you someone who’s always probing and asking why, someone who enjoys finding smarter and more efficient solutions to problems and helping teams level-up their security practices? If you have a strong operations background with a passion for security and experience in cloud-first environments, then we want to talk to you.

Founded in Vancouver, Canada in 2008, Clio is transforming the practice of law, for good. Whether it's our industry-leading cloud-based practice management platform, our ground-breaking Legal Trends Report or our ever-popular Clio Cloud Conference, Clio is at the forefront of advancing the legal sphere.

With the help of the cloud, we make lawyers’ lives simpler and help them better organize and manage their legal practices. As one of Canada’s fastest-growing companies with international reach, we employ over 250 individuals with a rapidly growing customer base spanning 90 countries. Clio has been recognized as one of CIX’s Top 20 Most Influential Technology Companies, one of Canada’s Top Small & Medium Employers, and has one of Canada’s 10 Most Admired Corporate Cultures. Additionally, for the last two years, we have been recognized on Deloitte's Fast50 Fast500 lists.


What you'll be doing:

  • Mentoring and sharing best security practices;

  • Develop and implement tools to help developers avoid security flaws;

  • Build partnerships with developments teams and provide expertise in security best practices;

  • Contribute to driving security awareness and knowledge amongst the product organization;

  • Provide detailed guidance and support to teams in vulnerability remediation;

  • Identify and implement tools for automated application scanning, static analysis and related tools;

  • Perform penetration testing;

  • Perform reactive incident response when a security event occurs;

  • Perform proactive research to detect new attack vectors;

  • Elevate and educate our security culture within Clio, contributing to our cultural values of “No doors, only windows” and “Live a learning mindset”.

Who you are:

  • A curious person who is willing to ask many questions;

  • Someone who loves learning new things and developing creative security solutions for a fast growing, continuous integration environment;

  • 5+ years experience in some combination of the following disciplines: web application security, cloud security, infrastructure security, penetration testing, secure software development, security tools development, architecture review and threat modelling;

  • Experience with AWS, Ruby on Rails, Python, Javascript and other modern open source languages and tools.

 

Why would you want to work here:

We offer a great compensation package, 3 weeks vacation, a fun work environment, a great benefits plan, and an opportunity to be part of a great growth story with unlimited potential. We are looking for owl-drawers and team builders—people who work hard and play for keeps. We hire the brightest, most driven people in tech, and boast alumni from Google, Salesforce, Facebook, Amazon and LinkedIn on our team. Come and join them!

Location:

We are preferably looking for someone to be in our world-class office in Vancouver or Calgary. We are also open to remote options in similar time zones. 

Need more reasons? Here are some things that make us awesome:

  • The chance to do work that matters on a product that truly changes lives. This is the place for driven people who want to make their mark.

  • The freedom to choose your own path (and change it) to build a meaningful career that works for you.

  • Excellent health and dental coverage, vacation time, parental leave options and education spending

  • An RRSP matching program

  • Regular games nights and team outings with the best coworkers you’ll ever work with

We believe that ensuring diversity and inclusion will produce a better place to work and a better product. We encourage all candidates to apply.

Please mention that you come from Remotive when applying for this job.

Help us maintain Remotive! If this link is broken, please just click to report dead link!

similar jobs

  • 3 weeks ago

    Trice Imaging is looking for a talented Cloud Operations Specialist to help maintain and expand our application platform. You would join a small team and work alongside our development team as well. We are a distributed team (development & other operations team across the United States) with other employees across the world. Trice was originally founded in Stockholm, with some employees currently residing in Sweden & Germany. We operate 100% remotely but after joining the company, you will be able to physically meet some of the team for training.

    This position requires European residency (preferably Germany or Sweden).

    What you’ll be doing:

    • Administer and monitor our application, running in AWS, which handles some huge medical data sets

    • Improve our infrastructure deployment (moving things to Terraform, et al.) and drive our evolution across multiple regions

    • Drive the installation and go-live of large customer accounts in Europe and Asia and provide support to sales and priority issues

    • Help ensure we have accurate records to assist with security and/or support certifications

    • Participate in security processes, including reviews and questionnaires from customers

    Your Qualifications:

    • 5+ years of professional cloud operations experience (AWS, Google Cloud, Azure, etc.)

    • 5+ years professional experience in Linux system administration, devops, or a Site Reliability Engineer (SRE) role

    • Proficiency in POSIX or Bash shell scripting, Ruby, or Python

    • Experience with automation and configuration management using tools such as Puppet, Chef, or Ansible

    • Familiarity with networking principles, and can troubleshoot problems (including on customer systems)

    • Experience (even if only a little) working with a remote team and a quiet home office or work location

    • Personality with a customer focus.. You will be speaking with customers, and they should be able to enjoy talking to you

    • Language skills: English fluency, and good language skills in one or two other major European languages

    It would nice if you have:

    • Experience with web servers (Nginx), and PostgreSQL (on AWS RDS)

    • Familiarity working in an environment with security or regulatory requirements (specifically ISO 27001, MEDDEV, or SOC 2)

    • Experience with ISO 27001 or SOC 2 (AICPA Trust Services Principles) policies and willingness to help improve & implement them, would be fantastic

  • Tackle.io helps enterprise software companies take advantage of the Amazon Marketplace. We have done work for amazing software companies like New Relic, Cyberark, Pagerduty, Druva and many others. We can get you listed fast to enable streamlined procurement and new channels for revenue. Our software also enables downstream integration into corporate systems like Salesforce and advanced revenue reporting to make running your business with the Marketplace a breeze. Software vendors focus on their clients and software, we focus on Amazon, everyone wins.

    Stack Overview

    • Infrastructure: AWS

    • Front-end: JavaScript / React

    • Back-end: Python / Flask / Zappa

    Qualifications

    • At least 2 years of experience with React and Redux/MobX in a production environment

    • At least 2 years experience working with Python and/or Go in a production environment

    • Excited about delivering quality software and are familiar with unit and acceptence testing frameworks

    • Comfortable in a modern software engineering environment with distributed source code control, blue-green deployment, and continuous deployment

    • Experience with Amazon Web Services

    • Experience working remotely or working with remote team members

    Extra Credit

    • Personal blog

    • GitHub code portfolio

    • Participation in open source projects

    • AWS Certifications - Certified Solution Architect and/or Certified Developer

    Please send your cover letter and resume to [email protected] to apply!

  • 4 weeks ago

    ALICE is a growing startup serving 2k+ hotels all over the world with a global team of 140 staff spread across 16 countries. Our mission is to help businesses deliver exceptional hospitality with a focus on hotels. We do this by partnering with the world's best hoteliers to build a product that lets them do their best work. We take on the challenge of running the day to day tasks of every department in a hotel through a unified platform.

    We are looking for a Director of DevOps to lead a group of high-performing and globally distributed DevOps engineers. The Director of DevOps will manage and continue to grow a globally-distributed team while contributing to strategic planning to define direction for ALICE Infrastructure and DevOps. You will work with a highly motivated, diverse, and thoughtful group as we rapidly scale to disrupt an industry.

    The Director of DevOps will:

    • Lead a global team of DevOps engineers focused on efficient operation of daily activities, developer productivity and continuous improvement. Monitoring, automation and tools development

    • Establish and maintain DevOps strategies for execution and growth of the operation

    • Work closely with the engineering and product leadership to architect solid technical design and approach to operations

    • Define and manage company’s cloud posture with efficient utilization of cloud services, optimizing AWS cost/usage

    • Define and manage service standards, SLA’s for uptime & monitoring, etc

    • Implement processes for efficient server management including security related tasks, ensuring alignment with security requirements like patching and encryption

    • Develop and maintain a Business Continuity Plan and a Disaster Recovery Plan, and ensuring successful annual testing of each.

    • Develop and recommend standards, guidelines, and best practices for DevOps

    Our stack is:

    • Backend: Java / Groovy and Grails  

    • Web Server: Tomcat  

    • Database: Aurora MySQL (AWS RDS)  

    • ElasticSearch

    • Redis

    Qualifications:

    • 6+ years DevOps management experience at scale

    • Hands-on experience building complex, scalable, and high-performance system software architectures with AWS

    • Experience with designing the appropriate monitoring and alerting for production infrastructures

    • Strong experience with agile software development techniques and highly automated test environments

    • Experience managing mission-critical production systems with strict SLAs around service availability

    • Strong leadership skills with widely distributed teams (geography and time), inspiring and coaching people to help them do the best work of their career; helping people identify opportunities for their own growth, and define plans for achieving measurable goals

    • Organization and context-switching: this role will focus on a number of initiatives, simultaneously.

    • Bachelor’s degree in Computer Science, Engineering or related field

Remotive can help!

Not sure how to apply properly to this job? Watch our live webinar « 3 Mistakes to Avoid When Looking For A Remote Startup Job (And What To Do Instead) ».

Interested to chat with Remote workers? Join our community!