RemoteLeaf Logo
Log in Sign up

Lead Security Engineer, Enterprise Security

3 weeks, 3 days ago
United States
Full-time
Lead
Security Engineer
Cybersecurity
AWS Azure Cloudflare CrowdStrike GCP OAuth OpenID Connect Secrets Management Terraform Vercel
Apply Now
Klaviyo

Klaviyo

Klaviyo offers intelligent email marketing, SMS, and automation services for ecommerce businesses, empowering brands to personalize customer interactions and drive growth.

IT Services
1K-5K
Founded 2012
View All Jobs 70

Description

  • Partner across Engineering, IT, and Security teams to secure the lifecycle of critical corporate SaaS applications from procurement through offboarding.
  • Design and operate identity and access management controls across corporate SaaS platforms, including JIT access, privilege management, and SSO/SCIM integrations.
  • Mature and expand the company’s Zero Trust network architecture by establishing web gateways and defining secure access policies.
  • Design, prototype, iterate on, and responsibly review AI-generated security solutions and artifacts.
  • Manage and improve Cloudflare WAF policies and other perimeter security controls.
  • Expand endpoint security strategy and tooling to improve visibility, threat coverage, and response capability across the fleet.
  • Deliver complex, multi-team security projects from requirements gathering through production release.
  • Establish design patterns, standards, and technical direction for the team while mentoring other engineers.
  • Decompose technical problems into actionable workstreams and drive execution across multiple teams.

Requirements

  • 7+ years of experience in security or infrastructure engineering roles.
  • Demonstrated ownership of enterprise security domains such as SaaS security, IAM, Zero Trust, endpoint security, or cloud-delivered security services.
  • AI-first approach to engineering, with the ability to design, refine, validate, and own AI-assisted work.
  • Hands-on experience writing policy-as-code, reviewing architecture, and debugging production issues.
  • Proficiency with Terraform and infrastructure-as-code in enterprise security environments.
  • Experience operating in AWS environments, including cloud security services, IAM policies, and secure architecture patterns.
  • Experience with enterprise identity providers such as Okta or AWS Cognito.
  • Experience with security tools such as Cloudflare, Wiz, and CrowdStrike.
  • Knowledge of secrets management, JIT access, SSO, SCIM, and privileged access workflows including SAML 2.0, OAuth, and OIDC.
  • Experience mentoring engineers and influencing team-wide technical standards.
  • Preferred experience with GCP or Azure environments.
  • Preferred experience with Spacelift for IaC orchestration.
  • Preferred experience with AI agent development or securing AI coding platforms such as Lovable, Vercel, or Cursor.
  • Up to 10% travel may be required.

Benefits

  • Base salary range of $175,200 to $262,800 USD for US locations.
  • Participation in the company’s annual cash bonus plan.
  • Equity compensation may be included.
  • Sign-on payments may be included.
  • Comprehensive health, welfare, and wellbeing benefits based on eligibility.
  • Support for responsible AI use and accommodations as needed.
  • Travel is coordinated in advance.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Accenture

Incident Response Engineer

Accenture 100K+ Professional Services

Accenture Federal Services is hiring an Incident Response Engineer to lead security incident response and investigation efforts supporting US federal government missions.

United States Full-time Lead Security Engineer
$106k-$221k
Cybersecurity SIEM
5 hours, 24 minutes ago
Ping Identity

Senior IAM Architect

Ping Identity 1K-5K IT Services

Ping Identity is hiring a Senior IAM Architect to lead its internal identity and access management practice across workforce and customer environments, with the goal of keeping the company’s identity platforms secure, scalable, and operationally effective.

United States Full-time Lead Security Engineer
$137k-$180k
CI/CD OAuth OpenID Connect REST API SAML Terraform
5 hours, 39 minutes ago
Accenture

GRC Process Architect

Accenture 100K+ Professional Services

Accenture Federal Services is hiring a Security Architect to strengthen federal security architecture by identifying enterprise risks, guiding secure-by-design solutions, and improving architecture across systems, applications, and cloud environments.

United States Full-time Senior Security Engineer
$91k-$185k
Agile Network Security SFTP TLS
5 hours, 39 minutes ago
Ping Identity

Cyber Security Engineer III

Ping Identity 1K-5K IT Services

Ping Identity is hiring a Cyber Security Engineer III to strengthen and automate security operations across its SaaS and enterprise systems, with a focus on incident response, secure system design, and security engineering.

United Kingdom Full-time Senior Security Engineer
AWS Docker GCP Go Kubernetes
5 hours, 39 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers