Security Intelligence and Reporting Analyst

London, UK (Hybrid: 3 days p/week in-office)

About the team:

An exciting opportunity within the Security Strategy and Governance (SSG) team whose mission is to ensure the safety and security of our customers, partners and Klaviyos as well as deliver best in class technology solutions, infrastructure and services. This is achieved by providing a robust and secure technology foundation to do great work. We solve problems using technology, embrace automation, and support Klaviyo's continued scalability and sustainable employee growth in a rapidly evolving environment.

The SSG team assists the Global Security Services (GSS) organization in developing and refining information security strategy, creating metrics and reporting, coordinating cross-functional projects, and strategically aligning global information security initiatives with the broader CISO vision. The SSG team is highly collaborative and cross-functional, working closely with various functions within the GSS team (namely Security Risk and Trust, Security Product and Development, Global Protection Services and Security Intelligence Operations), Global Technology Solutions (GTS) team and the broader Klaviyo organization.

About the role:

Your role will be a conduit between security reporting and supporting day‑to‑day security detection & response operations. Your main focus will be on building “source‑of‑truth” dashboards and metrics for the GSS organization; the rest of the time will also focus on triaging, enriching, and escalating security detections in partnership with the SIO team. The remit spans data engineering, business intelligence, security telemetry and operations so security leaders can make faster, better decisions on risk, reliability, and incident outcomes. 

​​Reporting & Analytics

Your role will be to design, implement and manage data analytics and reporting dashboards using strategic tooling and processes, ingesting data from a wide range of GSS organization’s key source systems through APIs and creating management level reports and having those published for company wide consumption. You’ll be responsible for managing the analytics and reporting dashboards in GSS and providing solutions to take us into the future using tools to create trusted, robust and reliable reports that’s easy to access and understand. You’ll work closely with security experts as well as other Klaviyo functions to understand the data, ensuring it’s accurate and governed.

Security Intelligence 

This role also necessitates a contribution to the Security Intelligence Operations team by supporting threat detection and response services. This is a hands-on role that involves triaging and responding to cyber threats and conducting investigations. As the individual develops and gains proficiency in this area, the scope of responsibilities will expand to include building detections, and contributing to threat hunts, digital forensics and incident response. As a member of the team, you will have the opportunity to work on complex security challenges and combat cyber threats specific to Klaviyo’s assets. 

How you’ll have an impact:

Reporting and Analytics

• Develop and own an effective and comprehensive reporting dashboard with visualizations, reports, and analysis that reflect the source of truth in terms of performance monitoring for the GSS organization.
• Collaborate with and support stakeholders across the GSS organization ensuring alignment on business metrics and source standardization.
• Enable automated and accurate reporting of GSS metrics in forums such as Monthly Projects and Services Meetings, PMO Reviews, Strategic Initiatives and Board Materials. 
• Support our GSS organization with analytical support to assist in data driven problem solving.

Security Intelligence

• Triage and respond to cyber threats, alerts and incidents.
• Perform host and network based log analysis in a cloud first environment.
• Leverage AI and/or build security tools to automate threat response tasks.
• Develop detailed post incident and investigation reports.
• Collaborate with detection engineers to identify threat detection use cases. 
• Work with engineering stakeholders to improve security posture post investigations.

Program & stakeholder leadership

• Identify potential risks based on trends and communicate those insights back to the organization.
• Support the management of strategic programs and initiatives and work with GSS to establish and align on business impact sizing.
• Stay up-to-date on industry trends, best practices, and emerging technologies in our competitive landscape.

Who you are:

• Proven 5+ years of experience as a business intelligence and data analytic (essential), preferably in the SaaS industry. 
• Extensive, demonstrable experience reading and writing complex SQL queries for data collection and analysis including using visualization platforms such as Tableau, Power BI, Apache Superset or similar (essential).
• Scripting experience using Python (web scrapping), dbt and bash (essential).
• Experience using or ingesting data from Splunk, Snowflake and other monitoring tools (essential).
• Experience using Atlassian Confluence and JIRA (essential). 
• Automation-first approach for all work performed (essential). 
• You’ve already experimented with AI in work or personal projects, and you’re excited to dive in and learn fast. You’re hungry to responsibly explore new AI tools and workflows, finding ways to make your work smarter and more efficient (essential). 
• Experience of working with business areas to understand and interpret their requirements.
• Be curious, innovative, creative and agile, developing and championing new ideas, identifying opportunities, and learning fast along the way.
• Demonstrate initiative and commitment for results and the ability to set priorities and manage multiple initiatives.
• Strong time-management skills, with the ability to prioritize tasks, meet deadlines, and adapt to changing project requirements and timelines. 

Nice to have:

• 2+ years of hands-on security operations experience in cloud-native environments.
• Experience in triaging and responding to cyber threats, alerts, and incidents as well as log analysis, incident response and/or digital forensics.
• Experience securing cloud environments such as AWS, GCP, and/or Azure.
• Knowledge of security and IT frameworks such as NIST CSF, ISO 27001, SOC2, PCI-DSS.
• Experience using ASANA or any project management tools including creating integrations for reporting purposes. 
• Experience in information security and IT practices around services, cloud infrastructure, hosting and platforms.

#LI-Hybrid #LI-JW1