Engineering Manager - Platform Anti-Abuse
About this team
Klaviyo takes the security of our customers and the prevention of fraud and abuse stemming from the use of our platform as one of our utmost priorities. With our global reach comes no shortage of risk. By working alongside a team of talented Engineers, Data Scientists, and Security Specialists in the space of Abuse Detection and Prevention, you'll play a key role in ensuring that our platform maintains a strong security posture and prevents abuse before it impacts the unsuspecting citizens of the world.
The Platform Anti-Abuse team provides reusable platform services that allow product and feature teams to tap into the very best of what's available to make sure that if their functionality could be used to compromise the safety of our customers or their customers, they'll know about it and can shut it down before threat actors and attackers have a chance to do harm. This involves a mix of going hands-on with our existing stack alongside greenfield development, and requires an inquisitive and determined mind to help keep us one step ahead of those who would sign up to use our platform to phish, smish, and otherwise mislead compromised targets into giving up valuable information and endanger their livelihoods.
Members of this team work across our entire R&D department and alongside many of our Security teams in a relentless pursuit of ensuring that our platform stays secure, our customers stay confident in Klaviyo, and their customers stay safe in all of their transactions. Beyond the need for strong API Keys and Network Intrusion Detection, this team works to stop the bad actors who hide amongst our users, waiting to do harm when it's least suspected.
How you'll make a difference
- Partner with Engineers and PMs across R&D to build services and tools to automate the prevention of fraud and abuse inside our platform.
- Partner with Data Scientists to bring new Machine Learning models to life to assist with automated abuse-prevention workflows.
- Partner with our internal Risk, Security, and Compliance teams to make use of their expertise alongside your own to ensure the safety of our platform and our customers.
- Define strategies for leveraging existing detection and prevention systems alongside influencing and building net-new tools and services to combat malicious actors.
- Work across all of Klaviyo to not just ship code, but fully integrate solutions into our existing UX and product workflows throughout the entirety of the customer journey - from signup to account closure and everything in between.
Who you are
- An experienced software engineer who made the transition into management, with at least 7 years of hands-on experience and at least 3 years of management experience.
- A player-coach who can rely on those around them through leadership and delegation, but is capable of going hands-on with deeply technical problems as the need arises.
- Capable of developing and delivering short and long-term roadmaps while partnering with product managers and security specialists.
- Experienced with working across multiple stakeholders across various functions in large scale, high priority projects where strong coordination and timely communication are valued at a premium.
- Experienced with modern API design (REST / GRPC) and management.
- Experienced with monolithic and service-based architectures.
- Familiar with modern practices, tools, and third-party services which service the space of detecting and preventing abuse within SaaS platforms.
- Familiar with working on teams composed of direct reports and embedded SMEs from other parts of the organization.
- Familiar with ML Modelling and working with Data Scientists to design, create, tune, and productionalize real-world models to detect and assist with prevention of abusive or malicious content.
- Python, Django, and Go
- K8s
- MySQL and Snowflake
- Terraform
- Grafana and Splunk
- JIRA
Nice to have
- Experience working with fraud and abuse detection technologies and techniques
- Experience with service hardening techniques such as Penetration and Vulnerability testing
- Experience with secure software architecture patterns
- Experience writing and tuning high-performance SQL queries over large datasets.
- Experience with User Behavior Modeling and Anomaly Detection
- Experience working with OpenCTI and similar systems