At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you’re a close but not exact match with the description, we hope you’ll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny.
Klaviyo is looking for a security engineer to add to our growing Detection & Response Team. This is a hands-on technical role that involves detection engineering, attack path analysis, security orchestration and automation, and development of security tools to take our security program to the next level. As a security engineer, you will have the opportunity to identify attack paths (for our cloud, corporate and product environments), build detections-as-code leveraging our detection development pipeline, help implement machine techniques for threat detection, and execute on core detection and response engineering efforts.
How you will make a difference:
- Develop, test, and deploy high fidelity signature and anomaly (DS/ML) based detections
- Conduct TTP-based threat models or attack path analysis to drive detection use cases
- Detect threats leveraging solutions such as SIEM, data lake, and cloud platforms
- Automate and codify detection and response processes and playbooks
- Build threat detection systems, tools, integrations and automations
- Configure and optimize detection and response technologies (e.g., SIEM, EDR, IDS/IPS)
- Support with threat response efforts and conduct ad-hoc threat hunts
- Support with log data onboarding into data lake and/or SIEM
- Collaborate across teams (site, product, engineering, IT) to understand Klaviyo environments and drive threat detection use cases
We’d love to hear from you if you have:
- 3+ years of security experience in the modern cloud environments
- Hands-on experience in detection engineering using SPL and/or SQL
- Hands-on experience with SIEM and centralized logging (e.g., Splunk, Snowflake)
- Strong coding skills to build/automate (e.g., Python, Go)
- Experience with detection-as-code and/or securely deploying code via a CI/CD pipeline
- Strong understanding of tactics, techniques, and procedures used by threat actors
- Experience with threat modeling or attack path analysis to drive detection use cases
- Knowledge of system fundamentals, OS internals, and file systems for Linux and MacOS
- Knowledge of network security fundamentals and application in a cloud-first environment
- Automation-first approach for detection and response work performed
- Experience creating detections for Okta, Salesforce, Google Workspace a plus
- Experience securing cloud environments such as AWS, GCP, and/or Azure
- Team player with a strong, self-managing work ethic
The pay range for this role is listed below. This role is eligible for benefits, including: medical, dental and vision coverage, health savings accounts, flexible spending accounts, 401(k), flexible paid time off and company-paid holidays and a culture of learning that includes a learning allowance and access to a professional coaching service for all employees.
Massachusetts Applicants:
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
Our salary range reflects the cost of labor across various U.S. geographic markets. The range displayed below reflects the minimum and maximum target salaries for the position across all our US locations. The base salary offered for this position is determined by several factors, including the applicant’s job-related skills, relevant experience, education or training, and work location.
In addition to base salary, our total compensation package may include participation in the company’s annual cash bonus plan, variable compensation (OTE) for sales and customer success roles, equity, sign-on payments, and a comprehensive range of health, welfare, and wellbeing benefits based on eligibility. Please visit Klaviyo Rewards to find out more about our Total Rewards package.
Your recruiter can provide more details about the specific salary/OTE range for your preferred location during the hiring process.
Get to Know Klaviyo
We’re Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we’re developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators—ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you’re ready to do the best work of your career, where you’ll be welcomed as your whole self from day one and supported with generous benefits, we hope you’ll join us.
Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law.