Klaviyo
Senior Security Engineer, Threat Detection
Klaviyo, Boston, Massachusetts, us, 02298
At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you're a close but not exact match with the description, we hope you'll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny.
Klaviyo is looking for a Senior Security Engineer to add to our growing Detection Engineering Team. This is a hands-on technical role that involves solving complex security problems, threat detection, log ingestion and management, security orchestration and automation, and developing new tools to take the Detection & Response Program to the next level. As a Senior Security Engineer you will have the opportunity to provide detection engineering thought leadership, take ownership of end-to-end detection development lifecycle, and execute on core detection and response engineering efforts.
How you will make a difference:
Develop, test, and deploy high fidelity signature and anomaly based detections as codeConduct TTP-based threat models or attack path analysis to drive detection use casesDetect threats leveraging solutions such as SIEM, data lake, and cloud platformsAutomate and codify detection and response processes and playbooksDesign, deploy and maintain extract, transform and load (ETL) data pipelinesLeverage ETL data pipelines to onboard logging data into data lake and/or SIEMBuild threat detection systems, tools, integrations and automationsConfigure and optimize detection and response technologies (e.g., SIEM, EDR, IDS/IPS)Conduct ad-hoc threat hunts in support of SecOps, detection, automations or toolsCollaborate across teams (site, product, engineering, IT) to understand and protect all aspects of Klaviyo cyber footprintWe'd love to hear from you if you have:
6+ years of security experience in the modern cloud environmentsHands-on experience in detection engineeringHands-on experience with data science / machine learning techniques to identify threatsHands-on experience with SIEM and centralized logging (e.g., Splunk, Snowflake)Experience with extract, transform and load (ETL) data pipelinesExperience with detection-as-code and infrastructure-as-codeProficient in programming languages to automate / build (e.g., Python, Go)Strong understanding of tactics, techniques, and procedures used by threat actorsExperience with threat modeling or attack path analysis to drive detection use casesKnowledge of system fundamentals, OS internals, and file systems for Linux and MacOSAutomation-first approach for all work performedExperience securing cloud environments such as AWS, GCP, and/or AzureStrong oral and written communication skillsTeam player with a strong, self-managing work ethic
The pay range for this role is listed below. Sales roles are also eligible for variable compensation and hourly non-exempt roles are eligible for overtime in accordance with applicable law. This role is eligible for benefits, including: medical, dental and vision coverage, health savings accounts, flexible spending accounts, 401(k), flexible paid time off and company-paid holidays and a culture of learning that includes a learning allowance and access to a professional coaching service for all employees.
Base Pay Range For US Locations:
$156,800-$235,200 USD
Get to Know Klaviyo
We're Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators-ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us.
Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law.
IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously. We will never ask for payment, bank details, or personal financial information as part of the application process. All our legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls.
You can find our Job Applicant Privacy Notice here.
Klaviyo is looking for a Senior Security Engineer to add to our growing Detection Engineering Team. This is a hands-on technical role that involves solving complex security problems, threat detection, log ingestion and management, security orchestration and automation, and developing new tools to take the Detection & Response Program to the next level. As a Senior Security Engineer you will have the opportunity to provide detection engineering thought leadership, take ownership of end-to-end detection development lifecycle, and execute on core detection and response engineering efforts.
How you will make a difference:
Develop, test, and deploy high fidelity signature and anomaly based detections as codeConduct TTP-based threat models or attack path analysis to drive detection use casesDetect threats leveraging solutions such as SIEM, data lake, and cloud platformsAutomate and codify detection and response processes and playbooksDesign, deploy and maintain extract, transform and load (ETL) data pipelinesLeverage ETL data pipelines to onboard logging data into data lake and/or SIEMBuild threat detection systems, tools, integrations and automationsConfigure and optimize detection and response technologies (e.g., SIEM, EDR, IDS/IPS)Conduct ad-hoc threat hunts in support of SecOps, detection, automations or toolsCollaborate across teams (site, product, engineering, IT) to understand and protect all aspects of Klaviyo cyber footprintWe'd love to hear from you if you have:
6+ years of security experience in the modern cloud environmentsHands-on experience in detection engineeringHands-on experience with data science / machine learning techniques to identify threatsHands-on experience with SIEM and centralized logging (e.g., Splunk, Snowflake)Experience with extract, transform and load (ETL) data pipelinesExperience with detection-as-code and infrastructure-as-codeProficient in programming languages to automate / build (e.g., Python, Go)Strong understanding of tactics, techniques, and procedures used by threat actorsExperience with threat modeling or attack path analysis to drive detection use casesKnowledge of system fundamentals, OS internals, and file systems for Linux and MacOSAutomation-first approach for all work performedExperience securing cloud environments such as AWS, GCP, and/or AzureStrong oral and written communication skillsTeam player with a strong, self-managing work ethic
The pay range for this role is listed below. Sales roles are also eligible for variable compensation and hourly non-exempt roles are eligible for overtime in accordance with applicable law. This role is eligible for benefits, including: medical, dental and vision coverage, health savings accounts, flexible spending accounts, 401(k), flexible paid time off and company-paid holidays and a culture of learning that includes a learning allowance and access to a professional coaching service for all employees.
Base Pay Range For US Locations:
$156,800-$235,200 USD
Get to Know Klaviyo
We're Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators-ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us.
Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law.
IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously. We will never ask for payment, bank details, or personal financial information as part of the application process. All our legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls.
You can find our Job Applicant Privacy Notice here.