Logo
Klaviyo Inc.

Senior Software Engineer - Platform Anti-Abuse Team

Klaviyo Inc., Boston, Massachusetts, us, 02298


About this teamKlaviyo takes the security of our customers and the prevention of fraud and abuse stemming from the use of our platform as one of our utmost priorities. With our global reach and self-service platform comes no shortage of risk. By working alongside a team of talented Engineers, Data Scientists, and Security Specialists in the space of Abuse Detection and Prevention, you'll play a key role in ensuring that our platform maintains a strong security posture and prevents abuse before it impacts the unsuspecting citizens of the world.

The Platform Anti-Abuse team provides reusable platform services that allow product and feature teams to tap into the very best of what's available to make sure that if their functionality could be used to compromise the safety of our customers or their customers, they'll know about it and can mitigate it before threat actors and attackers have a chance to do harm. This involves a mix of going hands-on with our existing stack alongside greenfield development, and requires an inquisitive and determined mind to help keep us one step ahead of those who would sign up to use our platform to phish, smish, and otherwise mislead compromised targets into giving up valuable information and endanger their livelihoods.

Members of this team work across our entire R&D department and alongside many of our Security teams in a relentless pursuit of ensuring that our platform stays secure, our customers stay confident in Klaviyo, and their customers stay safe in all of their transactions. Beyond the need for strong API protection and Network Intrusion Detection, this team works to suss out the bad actors who hide amongst our users, waiting to do harm when it's least suspected.

How you'll make a difference

As a Senior Software Engineer, you will partner with Engineers and PMs across R&D to build services and tools to automate the prevention of fraud and abuse inside our platform, by reducing Account Takeovers, Malicious Signups, Content Inspection, and other common vectors for abuse and fraud.

Partner with Data Scientists to bring new Machine Learning models to life to assist with automated abuse-prevention workflows.

Partner with our internal Risk, Security, and Compliance teams to make use of their expertise alongside your own to ensure the safety of our platform and our customers.

Plan, coordinate, and execute projects leveraging existing detection and prevention systems alongside influencing and building net-new tools and services to combat malicious actors.

Work across all of Klaviyo to not just ship code, but fully integrate solutions into our existing UX and product workflows throughout the entirety of the customer journey - from signup to account closure and everything in between.

Collaborate on the definition of success metrics and implement various means of measurement.

Minimize false positives / negatives while confronting and combating persistent abusers and net-new abuse vectors.

Who you are

An experienced software engineer with over 5 years of practice with the art of writing and delivering high quality software, including stand alone platform-available services alongside reusable tools and scripts.

Have worked on high scale systems used by internal and external customers.

Experienced with API design (REST / GRPC) and management.

Experienced with monolithic and service-based architectures, with a focus on scalability and reliability.

Experienced writing and tuning high performance SQL queries over large datasets.

Familiar with writing queries and creating dashboards in Splunk, Cloudwatch, and Grafana.

Familiar with design principles and best practices involving Event Based Architecture and Domain Driven Architecture

Tech Stack

Python, Django, and Go

K8s

MySQL and Snowflake

Queueing / Streaming Infrastructure (RabbitMQ, Apache Pulsar, SQS, etc)

AWS (S3, RDS, Elasticache, etc)

Terraform

Grafana and Splunk

Nice to have

Experience with Django at high scale

Experience with service hardening techniques such as Penetration and Vulnerability testing

Experience with OCR and Image Recognition technologies and algorithms

Experience with User Behavior Modeling and Anomaly Detection

Experience generating / using deep learning embeddings, such as those based on text

Experience working with OpenCTI and similar systems

Familiarity with modern practices, tools, and third party services which service the space of detecting and preventing abuse within SasS platforms.

Familiarity with ML Modelling and working with Data Scientists to design, create, tune, and productionalize real-world models to detect and assist with prevention of abusive or malicious content.

Familiarity with the domains of Email, SMS, and other communication channels.

#J-18808-Ljbffr