RemoteLeaf Logo
Log in Sign up

Lead Security Engineer, Enterprise Security

2 weeks, 5 days ago
United States
Full-time
Lead
Security Engineer
Cybersecurity
AWS Azure Cloudflare CrowdStrike GCP OAuth OpenID Connect Secrets Management Terraform Vercel
Apply Now
Klaviyo

Klaviyo

Klaviyo offers intelligent email marketing, SMS, and automation services for ecommerce businesses, empowering brands to personalize customer interactions and drive growth.

IT Services
1K-5K
Founded 2012
View All Jobs 72

Description

  • Partner across Engineering, IT, and Security teams to secure the lifecycle of critical corporate SaaS applications from procurement through offboarding.
  • Design and operate identity and access management controls across corporate SaaS platforms, including JIT access, privilege management, and SSO/SCIM integrations.
  • Mature and expand the company’s Zero Trust network architecture by establishing web gateways and defining secure access policies.
  • Design, prototype, iterate on, and responsibly review AI-generated security solutions and artifacts.
  • Manage and improve Cloudflare WAF policies and other perimeter security controls.
  • Expand endpoint security strategy and tooling to improve visibility, threat coverage, and response capability across the fleet.
  • Deliver complex, multi-team security projects from requirements gathering through production release.
  • Establish design patterns, standards, and technical direction for the team while mentoring other engineers.
  • Decompose technical problems into actionable workstreams and drive execution across multiple teams.

Requirements

  • 7+ years of experience in security or infrastructure engineering roles.
  • Demonstrated ownership of enterprise security domains such as SaaS security, IAM, Zero Trust, endpoint security, or cloud-delivered security services.
  • AI-first approach to engineering, with the ability to design, refine, validate, and own AI-assisted work.
  • Hands-on experience writing policy-as-code, reviewing architecture, and debugging production issues.
  • Proficiency with Terraform and infrastructure-as-code in enterprise security environments.
  • Experience operating in AWS environments, including cloud security services, IAM policies, and secure architecture patterns.
  • Experience with enterprise identity providers such as Okta or AWS Cognito.
  • Experience with security tools such as Cloudflare, Wiz, and CrowdStrike.
  • Knowledge of secrets management, JIT access, SSO, SCIM, and privileged access workflows including SAML 2.0, OAuth, and OIDC.
  • Experience mentoring engineers and influencing team-wide technical standards.
  • Preferred experience with GCP or Azure environments.
  • Preferred experience with Spacelift for IaC orchestration.
  • Preferred experience with AI agent development or securing AI coding platforms such as Lovable, Vercel, or Cursor.
  • Up to 10% travel may be required.

Benefits

  • Base salary range of $175,200 to $262,800 USD for US locations.
  • Participation in the company’s annual cash bonus plan.
  • Equity compensation may be included.
  • Sign-on payments may be included.
  • Comprehensive health, welfare, and wellbeing benefits based on eligibility.
  • Support for responsible AI use and accommodations as needed.
  • Travel is coordinated in advance.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
5 hours, 12 minutes ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
5 hours, 28 minutes ago
Dropbox

Senior Infrastructure Security Engineer

Dropbox 1K-5K Internet Software & Services

Dropbox is hiring a Security Engineer to secure its AI and agentic infrastructure while helping protect products and users across cloud and on-prem environments.

Canada Full-time Lead Infrastructure Engineer Security Engineer
$152k-$206k
Bash CI/CD CrowdStrike Go Java Kubernetes Linux LLM Node.js OAuth OpenID Connect OWASP Python Ruby Rust SIEM
5 hours, 28 minutes ago
Fullscript

Staff, Security Engineer

Fullscript 251-1K Health Care Providers & Services

Fullscript is hiring a Staff Security Engineer to lead hands-on security engineering across its healthcare technology platform, shaping secure product development and protecting systems that support practitioners and patients.

United States Canada Full-time Lead Security Engineer
AWS GitHub GitLab GraphQL JavaScript Node.js Penetration Testing Ruby on Rails
5 hours, 58 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers