Lead Security Engineer

At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyo) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you’re a close but not exact match with the description, we hope you’ll still consider applying.

Want to learn more about life at Klaviyo? Visit  to see how we empower creators to own their own destiny.

As a Lead Security Engineer, you’ll be a vital part of the Infrastructure Security Team, focusing on strengthening the security posture across Klaviyo’s entire technology environment, developing security architectures and repeatable patterns and mentoring colleagues and junior security engineers. Unlike roles with a narrowly defined specialty, this position offers the opportunity to demonstrate your unique expertise—whether that’s in cloud security, identity and access management, data protection, secure systems design, or other security domains.

Your work will involve evaluating and hardening our infrastructure, collaborating with cross‑functional teams, and leveraging AI to build scalable solutions to address emerging threats.

We are looking for someone who is excited to bring their specialized skills to the team, shaping Klaviyo’s security practices and helping us continue to raise the bar.

• Secure Klaviyo’s infrastructure by designing, implementing, and maintaining scalable security controls across cloud, on‑prem, and hybrid environments
• Evaluate and improve security configurations and policies across a range of technologies, using your domain expertise to reduce risk and enable secure‑by‑default architectures
• Collaborate with engineering and IT teams to embed security practices and develop repeatable security patterns across the development and deployment lifecycle
• Lead threat modeling, risk assessments, and architecture reviews in areas aligned with your specialty
• Develop automated solutions and infrastructure‑as‑code to drive consistent and reproducible security outcomes
• Stay ahead of the latest threats and advocate for innovative security solutions aligned with business needs
• Help define security standards and best practices at Klaviyo, championing their adoption across teams

• Have 5+ years of experience in infrastructure or security engineering roles, with deep knowledge in one or more security focus areas (e.g., cloud security, IAM, endpoint security, data protection, detection engineering, compliance)
• Comfortable navigating ambiguity and defining priorities in a broad‑scoped role
• Experienced working in modern cloud environments such as AWS, GCP, or Azure
• Familiar with infrastructure‑as‑code tools such as Terraform, Cloud Formation, or Pulumi
• Proficient in secure systems design, threat modeling, and vulnerability management
• AI Agentic development and prompt engineering, MCP (AWS Bedrock, OpenAI, Anthropic)
• Able to clearly articulate complex security topics to technical and non‑technical stakeholders
• Passionate about security, eager to learn from others and share your expertise
• Nice to have -- certifications (e.g., CISSP, CKS, GCP/AWS Security certs) or equivalent practical experience

Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

$220,000 — $330,000 USD

We’re Klaviyo (pronounced clay‑vee‑oh). We empower creators to own their destiny by making first‑party data accessible and actionable like never before. We see limitless potential for the technology we’re developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators—ambitious and collaborative teammates who stay focused on our north star: delighting our customers.

If you’re ready to do the best work of your career, where you’ll be welcomed as your whole self from day one and supported with…