How would you design a secure, least-privilege access model for a microservices architecture at Klaviyo?