Klaviyo
Lead Security Engineer at Klaviyo
As a Lead Security Engineer, you’ll be a vital part of the Infrastructure Security Team, focusing on strengthening the security posture across Klaviyo’s entire technology environment, developing security architectures and repeatable patterns, and mentoring colleagues and junior security engineers. Your work will involve evaluating and hardening our infrastructure, collaborating with cross‑functional teams, and leveraging AI to build scalable solutions to address emerging threats.
How You Will Make a Difference
Secure Klaviyo's infrastructure by designing, implementing, and maintaining scalable security controls across cloud, on‑prem, and hybrid environments
Evaluate and improve security configurations and policies across a range of technologies, using your domain expertise to reduce risk and enable secure‑by‑default architectures
Collaborate with engineering and IT teams to embed security practices and develop repeatable security patterns across the development and deployment lifecycle
Lead threat modeling, risk assessments, and architecture reviews in areas aligned with your specialty
Develop automated solutions and infrastructure‑as‑code to drive consistent and reproducible security outcomes
Stay ahead of the latest threats and advocate for innovative security solutions aligned with business needs
Help define security standards and best practices at Klaviyo, championing their adoption across teams
Qualifications
Have 5+ years of experience in infrastructure or security engineering roles, with deep knowledge in one or more security focus areas (e.g., cloud security, IAM, endpoint security, data protection, detection engineering, compliance)
Comfortable navigating ambiguity and defining priorities in a broad‑scoped role
Experienced working in modern cloud environments such as AWS, GCP, or Azure
Familiar with infrastructure‑as‑code tools such as Terraform, CloudFormation, or Pulumi
Proficient in secure systems design, threat modeling, and vulnerability management
AI Agentic development and prompt engineering, MCP (AWS Bedrock, OpenAI, Anthropic)
Able to clearly articulate complex security topics to technical and non‑technical stakeholders
Passionate about security, eager to learn from others and share your expertise
Nice to have – certifications (e.g., CISSP, CKS, GCP/AWS Security certs) or equivalent practical experience
Salary & Benefits Base Pay Range for US Locations: $220,000—$330,000 USD. In addition to base salary, total compensation may include participation in the company’s annual cash bonus plan, variable compensation, equity, sign‑on payments, and a comprehensive range of health, welfare, and wellbeing benefits based on eligibility.
Massachusetts Applicants It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
About Klaviyo Klaviyo empowers creators to own their destiny by making first‑party data accessible and actionable. We see limitless potential for the technology we’re developing to nurture personalized experiences in e‑commerce and beyond. If you’re ready to do the best work of your career, we hope you’ll join us.
Equal Opportunity Statement Klaviyo is committed to a policy of equal opportunity and non‑discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law.
Privacy & Security Notice By clicking “Submit Application,” you consent to Klaviyo processing your personal data in accordance with our Job Applicant Privacy Notice. If you do not wish for Klaviyo to process your personal data, please do not submit an application.
We do not ask for payment, bank details, or personal financial information as part of the application process; all legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non‑company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls.
#J-18808-Ljbffr
As a Lead Security Engineer, you’ll be a vital part of the Infrastructure Security Team, focusing on strengthening the security posture across Klaviyo’s entire technology environment, developing security architectures and repeatable patterns, and mentoring colleagues and junior security engineers. Your work will involve evaluating and hardening our infrastructure, collaborating with cross‑functional teams, and leveraging AI to build scalable solutions to address emerging threats.
How You Will Make a Difference
Secure Klaviyo's infrastructure by designing, implementing, and maintaining scalable security controls across cloud, on‑prem, and hybrid environments
Evaluate and improve security configurations and policies across a range of technologies, using your domain expertise to reduce risk and enable secure‑by‑default architectures
Collaborate with engineering and IT teams to embed security practices and develop repeatable security patterns across the development and deployment lifecycle
Lead threat modeling, risk assessments, and architecture reviews in areas aligned with your specialty
Develop automated solutions and infrastructure‑as‑code to drive consistent and reproducible security outcomes
Stay ahead of the latest threats and advocate for innovative security solutions aligned with business needs
Help define security standards and best practices at Klaviyo, championing their adoption across teams
Qualifications
Have 5+ years of experience in infrastructure or security engineering roles, with deep knowledge in one or more security focus areas (e.g., cloud security, IAM, endpoint security, data protection, detection engineering, compliance)
Comfortable navigating ambiguity and defining priorities in a broad‑scoped role
Experienced working in modern cloud environments such as AWS, GCP, or Azure
Familiar with infrastructure‑as‑code tools such as Terraform, CloudFormation, or Pulumi
Proficient in secure systems design, threat modeling, and vulnerability management
AI Agentic development and prompt engineering, MCP (AWS Bedrock, OpenAI, Anthropic)
Able to clearly articulate complex security topics to technical and non‑technical stakeholders
Passionate about security, eager to learn from others and share your expertise
Nice to have – certifications (e.g., CISSP, CKS, GCP/AWS Security certs) or equivalent practical experience
Salary & Benefits Base Pay Range for US Locations: $220,000—$330,000 USD. In addition to base salary, total compensation may include participation in the company’s annual cash bonus plan, variable compensation, equity, sign‑on payments, and a comprehensive range of health, welfare, and wellbeing benefits based on eligibility.
Massachusetts Applicants It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
About Klaviyo Klaviyo empowers creators to own their destiny by making first‑party data accessible and actionable. We see limitless potential for the technology we’re developing to nurture personalized experiences in e‑commerce and beyond. If you’re ready to do the best work of your career, we hope you’ll join us.
Equal Opportunity Statement Klaviyo is committed to a policy of equal opportunity and non‑discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law.
Privacy & Security Notice By clicking “Submit Application,” you consent to Klaviyo processing your personal data in accordance with our Job Applicant Privacy Notice. If you do not wish for Klaviyo to process your personal data, please do not submit an application.
We do not ask for payment, bank details, or personal financial information as part of the application process; all legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non‑company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls.
#J-18808-Ljbffr