Director, Information Security Risk and Compliance

See yourself at Twilio

Join the team as Twilio's next Director of Information Security Risk and Compliance on Twilio's Information Security team.

Who we are & why we're hiring

Twilio powers real-time business communications and data solutions that help companies and developers worldwide build better applications and customer experiences.

Although we're headquartered in San Francisco, we have presence throughout South America, Europe, Asia and Australia. We're on a journey to becoming a global company that actively opposes racism and all forms of oppression and bias. At Twilio, we support diversity, equity & inclusion wherever we do business.

About the job

This position will encompass the full Twilio information security risk management function, including third-party/vendor risk management, and liases closely with our enterprise and R&D risk functions. It also covers our end-to-end security compliance responsibilities spanning a range of regulatory and industry certifications..

We are seeking an experienced leader with a background in both risk management and security compliance who will be responsible for accelerating and innovating on our programs to maintain and extend Twilio's security risk posture.

Responsibilities

In this role, you'll:

• Innovate and evolve security governance programs to anticipate and prepare for future compliance requirements, imposed by governments, industries, and carriers
• Maintain compliance and audit requirements for routine compliance initiatives, including PCI, SOC2, ISO, HIPAA, among others
• Monitor and mature risk management practices by developing and implementing frameworks, programs, and reporting for product and enterprise security capabilities
• Collaborate and influence third party partners, including carriers and auditors, to positively impact relationships and results
• Recommend advancements to drive automation and self-service in evidence reporting, risk management, and other technical duties
• Leverage an engineering mindset to accelerate risk and compliance initiatives
• Align with senior executives on the company's product security posture
• Lead a talented and experienced team of security engineers and managers
• Influence roadmaps and decisions, including anticipating roadblocks and challenges

Qualifications

Not all applicants will have skills that match a job description exactly. Twilio values diverse experiences in other industries, and we encourage everyone who meets the required qualifications to apply. While having "desired" qualifications make for a strong candidate, we encourage applicants with alternative experiences to also apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!

Required:

• Experience leading a team of people managers and risk/compliance analysts in the risk management and security compliance domains
• 10 years of experience in risk management, compliance, certification, and audit/advisory services
• Relationships with audit firms for risk management practices, including enterprise and security risk
• Experience in compliance frameworks and regulations, including PCI, SOC2, ISO, and HIPAA
• Experience in building highly effective risk and compliance organizations with an emphasis on modernizing practices and procedures
• Experience partnering with go-to-market (GTM) and sales organizations to identify opportunities to address and anticipate customer needs, in order to further enhance customer trust
• Experience presenting to senior management in both verbal and written communications

Desired:

• Experience with compliance frameworks such as FedRAMP

Location

This role will be remote but is not eligible to be hired in San Francisco, CA, Oakland, CA, San Jose, CA, or the surrounding areas.

Travel

We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings.

What We Offer

There are many benefits to working at Twilio, including, in addition to competitive pay, things like generous time-off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.

Twilio thinks big. Do you?

We like to solve problems, take initiative, pitch in when needed, and are always up for trying new things. That's why we seek out colleagues who embody our values - something we call Twilio Magic. Additionally, we empower employees to build positive change in their communities by supporting their volunteering and donation efforts.

So, if you're ready to unleash your full potential, do your best work, and be the best version of yourself, apply now!

If this role isn't what you're looking for, please consider other open positions.

*Please note this role is open to candidates outside of Colorado, California, New York, and Washington. The information below is provided for candidates hired in those locations only.

The estimated pay ranges for this role are as follows:

• Based in Colorado: $180,800 - $226,100.
• Based in New York, Washington State, or California (outside of the San Francisco Bay area): $191,520 - $239,400.
• Based in the San Francisco Bay area, California: $212,800 - $266,000.
• This role may be eligible to participate in Twilio's equity plan and corporate bonus plan. All roles are eligible for the following benefits: health care insurance, 401(k) retirement account, paid sick time, paid personal time off, paid parental leave.

The successful candidate's starting salary will be determined based on permissible, non-discriminatory factors such as skills, experience, and geographic location within the state.

Twilio is proud to be an equal opportunity employer. Twilio is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Additionally, Twilio participates in the E-Verify program in certain locations, as required by law.

Twilio is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, please contact us at accommodation@twilio.com.