×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Manager, Security Trust & Compliance

Job in Boston, Suffolk County, Massachusetts, 02298, USA
Listing for: Klaviyo
Full Time position
Listed on 2025-12-05
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 140000 - 210000 USD Yearly USD 140000.00 210000.00 YEAR
Job Description & How to Apply Below

About This Role

Within our Information Security department, the Security Trust & Risk (STAR) group enables Klaviyos to take smart, disciplined risks while bolstering customer trust. To that end, within STAR, our Security Trust & Compliance team drives the following programs:

  • Compliance operations & audits (for SOC 2, ISO 27001, ISO 27017, PCI, and SOX ITGCs)
  • Continuous control monitoring
  • Security policies & standards
  • Security education & awareness
  • Customer trust operations & enablement (e.g. security questionnaires, customer calls, trust center administration, tech partner due diligence, etc.)
  • Identity governance (e.g. user access reviews, just-in-time access workflows, just-enough-access audits/remediation)
  • Privacy operations in partnership with Legal (e.g. data subject requests, records of processing activities, etc.)

We’re seeking a highly motivated Manager, Security Trust & Compliance to lead and support a talented team of GRC practitioners to drive the continuing evolution of these programs. You’ll partner closely with cross-functional teams, such as Engineering, Sales, Legal, IT, Security, Internal Audit, and more. Through all of this, you’ll help Klaviyo scale securely, sustainably deliver more value for our customers, and bolster their trust in us.

What

You’ll Be Doing
  • Lead, support, and develop our Trust team, helping your team members with professional development, goal achievement, and partnering effectively across Klaviyo
  • Partner with STAR team leadership to plan, oversee, and drive execution of our projects and operations to ensure timely delivery of high-quality business outcomes
  • Define a compelling vision/strategy for our Trust programs to continuously improve the efficiency and effectiveness of how we drive governance, cultivate culture, uphold compliance, and bolster trust
  • Continuously seek out and prioritize high‑value opportunities for the Trust team to use AI and automation to streamline our processes and eliminate toil
  • Drive cross‑functional alignment between the CISO organization and partner teams to ensure Trust‑related priorities are strongly aligned with department‑ and company‑level goals/OKRs
We’d love to hear from you if you have
  • Experience leading, developing, and managing teams of individual contributors, with an intentional focus on fostering diversity and belonging throughout the entire employee lifecycle
  • Broad and deep understanding of modern cloud‑native web application architectures and related security best practices, especially in the context of AWS, Kubernetes, and AI
  • Experience implementing Compliance Automation products, such as Drata, Vanta, Anecdotes, Hyper Proof, etc.
  • Experience executing/leading compliance programs for SOC 2, ISO 27001, ISO 27017, ISO 27018, PCI, HIPAA, GDPR, CCPA, and NIS2
  • Experience executing/leading core governance, compliance, and trust programs, such as continuous control monitoring, security policies & standards, security education & awareness, and customer trust operations
  • Experience applying GRC Engineering principles and values in practice, especially with regard to automation, systems + design thinking, and threat‑informed GRC
Everyone On Our Team Must Have
  • A strong bias toward evidence, logic, math, and reason when communicating risk (instead of fear, uncertainty, and doubt)
  • A strong bias toward “guardrails, not gates” and “paved security roads” philosophies (instead of rigid “centralized command‑and‑control” processes and operating styles)
  • Excellent ability to plan, prioritize, and deliver results cross‑functionally and in a timely fashion
  • Proficiency discussing complex, nuanced topics with technical & non‑technical audiences alike, especially software engineers
  • Strong alignment with Klaviyo’s core values
Ideally, You May Also Have
  • Experience with SQL, building tools with REST APIs, and Python
  • Experience implementing Identity Governance tools and processes, such as for user access reviews (UARs) and just‑in‑time access (JITA)
  • Experience working in security operations, security engineering, and/or security architecture roles

Base Pay Range For US Locations: $140,000—$210,000 USD

Get to Know Klaviyo

We’re Klaviyo (pronounced clay‑vee‑oh). We empower…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search