Senior / Lead Security Engineer, Cloud Infrastructure

<div class="content-intro"><p><em>At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you’re a close but not exact match with the description, we hope you’ll still consider applying. Want to learn more about life at Klaviyo? Visit <a class="_ymio1r31 _ypr0glyw _zcxs1o36 _mizu194a _1ah3dkaa _ra3xnqa1 _128mdkaa _1cvmnqa1 _4davt94y _4bfu18uv _1hms8stv _ajmmnqa1 _vchhusvi _kqswh2mm _ect4ttxp _syaz13af _1a3b18uv _4fpr8stv _5goinqa1 _f8pj13af _9oik18uv _1bnxglyw _jf4cnqa1 _30l313af _1nrm18uv _c2waglyw _1iohnqa1 _9h8h12zz _10531ra0 _1ien1ra0 _n0fx1ra0 _1vhv17z1" href="http://klaviyo.com/careers" data-renderer-mark="true">klaviyo.com/careers</a> to see how we empower creators to own their own destiny.</em></p></div><p>As a Lead Security Engineer, you’ll be a vital part of the Infrastructure Security Team, focusing on strengthening the security posture across Klaviyo’s entire technology environment, developing security architectures and repeatable patterns and mentoring colleagues and junior security engineers. Unlike roles with a narrowly defined specialty, this position offers the opportunity to demonstrate your unique expertise—whether that’s in cloud security, identity and access management, data protection, secure systems design, or other security domains. Your work will involve evaluating and hardening our infrastructure, collaborating with cross-functional teams, and leveraging AI to build scalable solutions to address emerging threats.</p> <p>We are looking for someone who is excited to bring their specialized skills to the team, shaping Klaviyo’s security practices and helping us continue to raise the bar.</p> <p><strong>How You Will Make a Difference</strong></p> <ul> <li>Secure Klaviyo's infrastructure by designing, implementing, and maintaining scalable security controls across cloud, on-prem, and hybrid environments</li> <li>Evaluate and improve security configurations and policies across a range of technologies, using your domain expertise to reduce risk and enable secure-by-default architectures</li> <li>Collaborate with engineering and IT teams to embed security practices and develop repeatable security patterns across the development and deployment lifecycle</li> <li>Lead threat modeling, risk assessments, and architecture reviews in areas aligned with your specialty</li> <li>Develop automated solutions and infrastructure-as-code to drive consistent and reproducible security outcomes</li> <li>Stay ahead of the latest threats and advocate for innovative security solutions aligned with business needs</li> <li>Help define security standards and best practices at Klaviyo, championing their adoption across teams</li> </ul> <p><strong>Who You Are</strong></p> <ul> <li>Have 5+ years of experience in infrastructure or security engineering roles, with deep knowledge in one or more security focus areas (e.g., cloud security, IAM, endpoint security, data protection, detection engineering, compliance)</li> <li>Comfortable navigating ambiguity and defining priorities in a broad-scoped role</li> <li>Experienced working in modern cloud environments such as AWS, GCP, or Azure</li> <li>Familiar with infrastructure-as-code tools such as Terraform, CloudFormation, or Pulumi</li> <li>Proficient in secure systems design, threat modeling, and vulnerability management</li> <li>AI Agentic development and prompt engineering, MCP (AWS Bedrock, OpenAI, Anthropic)</li> <li>Able to clearly articulate complex security topics to technical and non-technical stakeholders</li> <li>Passionate about security, eager to learn from others and share your expertise</li> <li>Nice to have - certifications (e.g., CISSP, CKS, GCP/AWS Security certs) or equivalent practical experience</li> </ul> <p> </p> <p>We use ... (truncated, view full listing at source)