Senior Security Engineer, Infrastructure
IT & Security
As a Senior Security Engineer on the Infrastructure Security team, you will play a critical role in securing Klaviyo's IT infrastructure, with a particular emphasis on Google Cloud Platform (GCP) security.
You'll be deeply involved in implementing and managing security measures across our network, cloud environments, servers, and databases, ensuring our GCP infrastructure is robust and resilient against threats.
Your expertise will help us align with industry best practices and maintain a strong security posture.
Engineers come to Klaviyo with experience in a variety of disciplines.
All engineers are expected to become proficient in the technologies we use (not exhaustive).
You will be responsible for guiding best practices in deployment, configuration, and maintenance to reduce overall security risk and champion secure-by-default design patterns:
GCP Security: Google Cloud IAM, Cloud Security Command Center, Cloud Key Management Service, Organization Policies, Chronicle Security AnalyticsCloud Infrastructure Security: Managing security configurations in GCP environmentsServer and Database Hardening: Securing servers and databases hosted on GCPCloud Endpoint Protection: Implementing endpoint security solutions within GCPHow You Will Make a Difference: Secure Klaviyo's IT infrastructure by implementing and managing network security measures, with a focus on GCP servicesConfigure and maintain GCP security features like Cloud Security Command Center, Organization Policies, and Chronicle Security Analytics to protect against threatsManage and audit security configurations in GCP to ensure compliance with best practices and regulatory requirementsHarden servers and databases hosted on GCP to safeguard against unauthorized access and vulnerabilitiesDeploy and manage cloud endpoint protection solutions within the GCP environmentCollaborate with cross-functional teams to integrate GCP security practices into all aspects of infrastructure development and deploymentContinuously monitor, assess, and improve security measures in GCP to adapt to emerging threats and technologiesWho You Are: Have 5+ years of experience in infrastructure security engineering or related fields, with significant experience in GCP securityStrong understanding of GCP security principles and technologiesExperience with GCP services such as Google Cloud IAM, Cloud Security Command Center, Cloud Key Management Service, Organization Policies, and Chronicle Security AnalyticsProficient in server and database hardening techniques within GCP environmentsFamiliarity with GCP-specific endpoint protection tools and strategiesCertifications such as Google Cloud Certified - Professional Cloud Security Engineer or relevant cloud security certifications are a plusExcellent problem-solving skills and attention to detailStrong communication skills with the ability to work collaboratively across teamsPassionate about staying up-to-date with the latest security threats and GCP technologiesBase Pay Range For US Locations: $152,000 — $228,000 USD
Get to Know Klaviyo: We're Klaviyo (pronounced clay-vee-oh).
We empower creators to own their destiny by making first-party data accessible and actionable like never before.
We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond.
To reach our goals, we need our own crew of remarkable creators—ambitious and collaborative teammates who stay focused on our north star: delighting our customers.
If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us.
Klaviyo is committed to a policy of equal opportunity and non-discrimination.
We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law. IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously.
We will never ask for payment, bank details, or personal financial information as part of the application process.
All our legitimate job postings can be found on our official career site.
Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls. You can find our Job Applicant Privacy Notice here.
#J-18808-Ljbffr