Principal Engineer, Security - Klaviyo

Key Responsibilities

• Architect and enforce security controls for a petabyte‑scale data platform, ensuring compliance with industry standards and regulations.
• Lead threat modeling, risk assessments, and secure design reviews for new features and infrastructure changes.
• Collaborate with product, engineering, and operations teams to embed security best practices into CI/CD pipelines and deployment workflows.
• Develop and maintain incident response playbooks, conduct tabletop exercises, and oversee post‑incident investigations.
• Mentor and coach security engineers, fostering a culture of continuous improvement and knowledge sharing.

Requirements

• 10+ years of experience in security engineering, with a proven track record in large‑scale, cloud‑native environments.
• Deep expertise in threat modeling, secure architecture, IAM, encryption, and compliance frameworks (e.g., SOC 2, ISO 27001).
• Hands‑on experience with AWS security services (KMS, IAM, GuardDuty, Security Hub) and container security.
• Strong communication skills, able to translate complex security concepts to technical and non‑technical stakeholders.
• Passion for staying current with emerging security threats, tools, and best practices.