Twilio is hiring a
Security Engineer

Summary

Twilio is seeking a proficient Security Engineer to join their Threat and Vulnerability Management team. The ideal candidate will have at least 3 years of professional experience in information security, with a focus on vulnerability management, strong understanding of security vulnerabilities, threat landscapes, and mitigation techniques, and proficiency in scripting or programming languages for automation of security tasks.

Requirements

• You have 3+ years of professional experience in information security, with a focus on vulnerability management
• Strong understanding of security vulnerabilities, threat landscapes, and mitigation techniques
• Experience with vulnerability scanning tools and techniques
• Proficiency in scripting or programming languages (e.g., Python, Bash, etc.) for automation of security tasks
• Excellent problem-solving skills and ability to work under pressure
• Flexible and able to manage multiple projects under tight deadlines
• Comfortable with ambiguity and adaptable to fast changing environments
• Strong communication skills, both written and verbal, with the ability to convey complex security concepts to technical and non-technical audiences

Responsibilities

• Manage Vulnerability Management infrastructure in our production environment for commercial & government Slack environments
• Leverage vulnerability scanning tools to perform vulnerability management scans on a regular cadence
• Perform analysis of scan results and determine criticality ratings for vulnerabilities impacting all production environments
• Collaborate with key stakeholders on remediation strategies, provide guidance, and follow through closure
• Report on and track all open vulnerabilities and key metrics around time to completion
• Identify potential for and implement automation between scanning and reporting tools

Preferred Qualifications

• Relevant security certifications (e.g., CISSP, CEH, OSCP) are a plus
• Experience operating in a production cloud environment, with expertise in at least one of: server, network, cloud, database; AWS admin and configuration management skills preferred
• Familiarity with regulatory compliance standards and risk frameworks, including GDPR, HIPAA, SOC 2, ISO 27001 & ISO 27002, and NIST 800-53 & NIST CFS is a plus

Benefits

• Competitive pay
• Generous time-off
• Amy parental and wellness leave
• Healthcare
• Retirement savings program