Senior Information Security Analyst - Security Customer Enablement

This position is needed to support security awareness and education for Twilio sales teams and customers. 

Security Customer Enablement is responsible for maintenance of information security for our largest customers. This role requires an understanding of cybersecurity, compliance, technical knowledge, and strong interpersonal skills.

You will partner with Product, Legal and InfoSec teams to be the face of Security/Customer Trust. The Security Analyst role will be accountable for answering questionnaires with integrity, reviewing legal documentation, and at times may be representing Twilio Security during technical audits.

Responsibilities

In this role, you’ll:

• Independently manage and respond to security questionnaires, customer calls, audit requests, and more from Twilio’s largest and most regulated customers. This includes the review, understanding, and alignment of questionnaire requirements with company policies, practices, and controls
• Collaborate closely with internal subject matter experts to gather and deliver accurate responses to Third-Party requests, ensuring alignment with industry standards and regulatory obligations
• Identify, communicate, and address potential security risks or gaps within questionnaire responses in collaboration with relevant teams
• Maintain an up-to-date repository of questionnaire responses, reflecting the latest and most relevant information.
• Contribute to the enhancement of security questionnaire response templates and processes, aiding in their development and refinement.
• Thrive in an autonomous, fast-paced, collaborative environment, consistently delivering high-quality outputs within set deadlines.
• Cultivate and sustain productive relationships with internal stakeholders, facilitating the collection of accurate security details for Twilio's diverse range of products and services.
• Propose innovative ideas to enhance team and organizational processes and procedures.
• Develop proficiency in comprehending legal language.
• Collaborate closely with the Audit Lead to orchestrate external Twilio Security audits, engaging internal stakeholders effectively.
• Formulate and manage educational security content, both internal and external, encompassing whitepapers, presentations, training materials, website content, and more

Qualifications 

Not all applicants will have skills that match a job description exactly. Twilio values diverse experiences in other industries, and we encourage everyone who meets the required qualifications to apply. While having “desired” qualifications make for a strong candidate, we encourage applicants with alternative experiences to also apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!

Required:

• 4+ years experience in customer facing technical roles engaging customers on various topics such as security, regulatory requirements, and risk management
• 3+ year of professional experience in business writing and/or technical writing
• Previous involvement in overseeing security questionnaires or analogous compliance-related tasks
• Understanding of basic cybersecurity principles (e.g., Encryption, Pen Testing, Business Continuity) and frameworks (e.g., SOC, DFARS, NIST)
• Display comfort in conveying complex technical concepts both verbally and in written form, catering to a broad audience
• 3+ years experience working with security concepts and technology, including encryption, networking, databases, telephony, email, LDAP, middleware, and applications ideally in a cloud environment, cloud and or API knowledge. Understanding of frameworks (e.g., SOC, NIST) is a plus
• 3+ years working with common security frameworks and regulatory requirements (e.g., FISC, CCPA, GDPR, PCI, SOC, ISO/IEC 2700X, COBIT, etc.)
• Showcase meticulous attention to detail, with expertise in both grammatical rules and formatting. Possess excellent time management, organizational, and multitasking skills
• Demonstrate the ability to collaborate effectively with personnel at all levels within an organization

Desired:

• Knowledgeable of security or compliance audits and/or assessments
• Experience reviewing and redlining contracts and legal documents from an InfoSec perspective
• You have or would be willing to obtain certification(s) such as: Security+, SSCP, CISSP, CISA, GSEC, CCSP, CCSK, PMP, CRISC, CFCP, or similar 
• Experience with developing technical standards, and operational guidelines

Location 

This role will be remotebut is not eligible to be hired in San Francisco, CA, Oakland, CA, San Jose, CA, or the surrounding areas. Travel is not required, however there may be some occasional travel opportunities due to meetings, conferences, etc.

What We Offer

There are many benefits to working at Twilio, including, in addition to competitive pay, things like generous time-off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.

Twilio thinks big. Do you?

We like to solve problems, take initiative, pitch in when needed, and are always up for trying new things. That's why we seek out colleagues who embody our values — something we call Twilio Magic. Additionally, we empower employees to build positive change in their communities by supporting their volunteering and donation efforts.

So, if you're ready to unleash your full potential, do your best work, and be the best version of yourself, apply now!

If this role isn't what you're looking for, please consider other open positions.

The estimated pay ranges for this role are as follows:

• Based in Colorado: $109,000 - $136,000
• Based in New York, Washington State or California (outside the San Francisco Bay Area): $115,000 - $144,000
• This role may be eligible to participate in Twilio’s equity plan. All roles are eligible for the following benefits: health care insurance, 401(k) retirement account, paid sick time, paid personal time off, paid parental leave.

The successful candidate’s starting salary will be determined based on permissible, non-discriminatory factors such as skills, experience, and geographic location within the state. 

Twilio is proud to be an equal opportunity employer. Twilio is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Additionally, Twilio participates in the E-Verify program in certain locations, as required by law.

Twilio is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, please contact us at [email protected].