Klaviyo
LeadSecurityEngineer,EnterpriseSecurity
“Lead Security Engineer, Enterprise Security at Klaviyo. Skills: Enterprise security architecture, SaaS security, Identity and Access Management (IAM), Zero Trust network architecture, Endpoint security, Cloud security, AI-first approach to security engineering. Securing corporate systems and platforms. Driving the security architecture and lifecycle of critical SaaS applications”
What You'll Achieve.
Ensure our corporate security posture keeps pace with a fast-moving, AI-first company; Establish the design patterns and standards your team works from; Achieve full endpoint visibility, proactive threat coverage, and rapid response capability across the fleet
Industry & Context.
Decomposing technical problems into actionable workstreams
Up to 10% travel
What They're Looking For.
Must Have
7+ years of experience in security or infrastructure engineering roles, Demonstrated ownership of enterprise security domains such as SaaS security, IAM, Zero Trust, endpoint security, or cloud-delivered security services, AI fluency, Hands-on by default, Proficient with Terraform for building and maintaining infrastructure-as-code across enterprise security systems, Experienced operating in AWS environments, Familiarity with cloud security services, IAM policies, and secure architecture patterns, Experience with enterprise IdP solutions such as Okta, AWS Cognito, Experienced with enterprise security tooling such as Cloudflare (WAF, gateway), Wiz (CNAPP/cloud security), and CrowdStrike (EDR/endpoint), Knowledgeable in secrets management, JITA, and modern identity patterns including SSO, SCIM, and privileged access workflows including SAML 2. 0, SCIM, OAuth and OIDC
Nice to Have
Experience with GCP or Azure environments, Spacelift for IaC orchestration, AI agent development, Securing AI coding platforms (e.g., Lovable, Vercel, Cursor)
What You'll Do.
Securing corporate systems and platforms
Driving the security architecture and lifecycle of critical SaaS applications
Ensuring the design and operations of identity and access management (IAM) across corporate SaaS platforms
Maturing and expanding Zero Trust network architecture
Managing and maturing Cloudflare WAF policies and other perimeter security controls
Expanding and maturing endpoint security strategy and tooling
Decomposing technical problems into actionable workstreams
Setting the pace through all phases from requirements through production
Designing solutions with AI
Iterating on implementations with AI
Taking full ownership of the quality and security of what is shipped
How You'll Work.
Team & Collaboration
Partner across Engineering, IT, and the broader Security organization; Partner across several teams to drive the security architecture and lifecycle of Klaviyo’s critical SaaS applications; Partnering with IT, Detection, Response, and the broader security teams to achieve full endpoint visibility, proactive threat coverage, and rapid response capability across the fleet
Process & Methodology
Deliver complex, cross-functional projects end to end, Decomposing technical problems into actionable workstreams, Setting the pace through all phases from requirements through production
Applying for this Lead Security Engineer, Enterprise Security role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about Klaviyo?
Real rants from real employees. Read before you apply.