Senior Security Trust & Compliance Analyst
At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you’re a close but not exact match with the description, we hope you’ll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny.
As a Senior Security Trust & Compliance Analyst at Klaviyo, you’ll work across the organization to support and mature our customer security questionnaires and internal security audits, both of which provide assurance to our customers while also enhancing the overall security of Klaviyo. You’ll work on translating security concepts for your fellow Klaviyos and bolster security culture throughout the company, including by helping drive our security awareness and training, phishing testing, and internal security Q&A programs. This is your opportunity to take an active role in cybersecurity, applying and growing your expertise in security automation, risk analysis, control design, audit management, modern SaaS platform architectures, and many domains of information security (just about all of them!)
What you’ll be doing
- Automate and streamline our Security Trust & Compliance workflows, including control testing, evidence collection, identity governance, and security Q&As for employees and customers, with a penchant for creating excellent self-service experiences
- Own internal and external audits or examinations preparation; coordinate with stakeholders to ensure control evidence is appropriate, and develop action plans to correct findings/exceptions.
- Develop our security awareness programming, including creation of role-specific education, phishing training, and continuous education.
- Mentor and train other junior members of the team
We’d love to hear from you if you have most of the following:
- Experience with GRC engineering or security automation in general
- Experience designing, assessing, and continuously monitoring modern security and privacy controls based on industry standards such as NIST 800-53, CIS Critical Security Controls, ISO 27002, etc.
- Experience owning or implementing security and privacy compliance audit programs for frameworks such as SOC 2, NIST CSF 2.0, ISO 27001, ISO 27017, ISO 27018, ISO 27701, ISO 42001, CSA STAR, GDPR, CCPA, SOX, etc.
- Knowledge of various enterprise SaaS applications, cloud infrastructure such as AWS, modern software engineering practices/tools, databases, operating systems, secure network design, and other technology relevant to cybersecurity
Massachusetts Applicants:
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
Our salary range reflects the cost of labor across various U.S. geographic markets. The range displayed below reflects the minimum and maximum target salaries for the position across all our US locations. The base salary offered for this position is determined by several factors, including the applicant’s job-related skills, relevant experience, education or training, and work location.
In addition to base salary, our total compensation package may include participation in the company’s annual cash bonus plan, variable compensation (OTE) for sales and customer success roles, equity, sign-on payments, and a comprehensive range of health, welfare, and wellbeing benefits based on eligibility. Please visit Klaviyo Rewards to find out more about our Total Rewards package.
Your recruiter can provide more details about the specific salary/OTE range for your preferred location during the hiring process.
Get to Know Klaviyo
We’re Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we’re developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators—ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you’re ready to do the best work of your career, where you’ll be welcomed as your whole self from day one and supported with generous benefits, we hope you’ll join us.
Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law.
Average salary estimate
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
Klaviyo is looking for a data-driven Compliance Operations Analyst to fortify their anti-abuse efforts and elevate customer outcomes.
We are looking for an analytical problem solver to spearhead customer experience strategies at Klaviyo, focusing on optimizing customer journeys for success.
Join KENDELL as a Senior System Administrator, where you will provide technical support and enhance IT operations in a dynamic environment.
Join LG Ad Solutions as an Incident Security Analyst to leverage your skills in cybersecurity and incident response in a rapidly evolving digital landscape.
Seeking a skilled Storage System Administrator with strong server and storage management expertise to optimize our IT infrastructure.
Become a key player at Shrikon as an Oracle HCM Redwood Developer, creating innovative user interfaces and enhancing client experience through advanced Oracle technologies.
Join Visa as a Systems Engineer Sr. Consultant to lead Linux engineering initiatives within a mission-driven organization.
As a Cloud Security Engineer at Kraken, you will play a key role in securing cloud infrastructure while working in a fully remote environment.
Join the Graduate Associate Program at Sun Life Global Solutions Philippines to kickstart your career in software development with immersive training and practical applications.
Help transform the SharePoint intranet experience at Unit4 as a SharePoint Intranet Content Specialist on a fixed-term contract.
As a Technology Lead Analyst at Citi in Tampa, you'll lead application development while fostering collaboration across teams to deliver impactful solutions.
Be part of a mission-driven team at SoFi as a DevOps Engineer to build resilient financial technology solutions.
Join Agile Defense as an Infrastructure Deployment Manager to lead IT deployment initiatives and support critical missions.
ING is looking for an inspiring IT Area Lead to oversee Employee Support Services and enhance employee experiences in a dynamic global environment.
Klaviyo is a global technology company committed to providing a marketing automation platform, used primarily for email marketing and SMS marketing by approximately 143,000 e-commerce merchants.
167 jobs
Subscribe to Rise newsletter
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
