At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you’re a close but not exact match with the description, we hope you’ll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny.
Why you should join the Security and Trust team
Klaviyo is looking for a Senior Security Engineer to add to our growing Security Operations Team. This is a hands-on technical role that involves solving complex security problems, threat detection, log ingestion and management, security orchestration and automation, incident response and developing new tools to take the Detection & Response Program to the next level. As a Senior Security Engineer you will have the opportunity to provide detection and response thought leadership, take ownership of end-to-end detection development lifecycle, and execute on core detection and response engineering efforts.
How you will make a difference:
- Develop, test, and deploy high fidelity detections using signatures, heuristics and models
- Establish telemetry data across Klaviyo cloud environment, platforms, and technologies
- Deploy and optimize detection and response technologies (e.g., SIEM, IDS/IPS, EDR)
- Detect cyber threats using tools such as a SIEM, IDS/IPS, EDR, and cloud detection platforms
- Automate and codify detection and response processes and playbooks
- Conduct ad-hoc threat hunts in support of SecOps, detection, automations or tools
- Build tools, integrations and automations for SecOps and threat detection platforms
- Collaborate across teams (site, product, engineering, IT) to understand and protect all aspects of Klaviyo cyber footprint
We’d love to hear from you if you have:
- 4+ years of hands-on security operations experience in the modern cloud environments
- Hands-on experience with SIEM and centralized logging (e.g., Splunk, ELK)
- Experience securing cloud environments such as AWS, GCP, and/or Azure
- Experience with coding languages to build/automate (e.g., Python, Go and/or Ruby)
- Experience with detection-as-code and infrastructure-as-code
- Understand techniques, tools and procedures used by threat actors in a cloud-first environments
- Subject matter expert in the areas of threat detection and incident response
- Experience with Security Orchestration, Automation, and Response (SOAR)
- Strong fundamentals of Linux and Mac operating systems
Get to Know Klaviyo
We’re Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we’re developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators—ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you’re ready to do the best work of your career, where you’ll be welcomed as your whole self from day one and supported with generous benefits, we hope you’ll join us.
Upon request, you can receive additional information about the compensation and benefits for this role. Requests can be submitted here . Additional information regarding benefits can be found at klaviyorewards.com .
Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law.
You can find our Job Applicant Privacy Notice here .