See yourself at Twilio

Join the team as our next Director, Security Architecture

Who we are & why we’re hiring

Twilio powers real-time business communications and data solutions that help companies and developers worldwide build better applications and customer experiences.

Although we’re headquartered in San Francisco, we have presence throughout South America, Europe, Asia and Australia. We’re on a journey to becoming a global company that actively opposes racism and all forms of oppression and bias. At Twilio, we support diversity, equity & inclusion wherever we do business.

About the job

This position is needed to join our Trust & Security team. In this role, you will ensure that Twilio’s products and infrastructure follow secure-by-design principles. You will partner closely with our platform, IT, and supernetwork teams to provide leadership and guidance to ensure that new technology solutions meet Twilio’s high security standards. In addition, you’ll participate in security reviews with our M&A due diligence team. 

You will also set the strategy for the security architecture team, with a number of security architects as well as risk professionals directly reporting to you. You will be expected to set, verify and guide technical security direction across all of Twilio products and services as well as work very closely with the BISO team to provide technical guidance for each business unit security leader.

Responsibilities

In this role, you’ll:

• Lead, mentor, and manage a team of Security Architects, fostering a collaborative and productive work environment.
• Set clear performance goals, provide regular feedback, conduct performance evaluations, and support professional development initiatives for team members.
• Develop and maintain the organization’s security strategy, ensuring it aligns with industry best practices and evolving security threats.
• Collaborate with other IT and business leaders to integrate security architecture into overall business and technology strategies.
• Collaborate with legal, compliance, and risk management teams to address security concerns and provide assurance to stakeholders from a security architecture perspective.
• Work with the team to design and review security solutions for new projects and initiatives, considering the organization’s risk appetite.
• Assess the impact of new technologies and identify potential security risks, providing recommendations for mitigation.
• Drive continuous improvement efforts for security practices, architecture, and processes, seeking ways to enhance the organization’s overall security posture.

Qualifications 

Not all applicants will have skills that match a job description exactly. Twilio values diverse experiences in other industries, and we encourage everyone who meets the required qualifications to apply. While having “desired” qualifications make for a strong candidate, we encourage applicants with alternative experiences to also apply. If your career is just starting or hasn’t followed a traditional path, don’t let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!

Required:

• 10+ years experience working in a security-focused role in a technology-related industry, including 5+ years in a leadership/managerial position.
• In-depth knowledge of security technologies, standards, and best practices.
• Proven understanding of risk and vulnerability remediation, best practices when it comes to reducing risks across complex environments and proven track record of working with technical collaborators. 
• Proven, proactive communication and interpersonal skills to build and maintain BU relationships, particularly with GMs and their senior leaders.
• Strong understanding of network security, cloud security, application security, and cryptography..
• Proven ability to influence and negotiate with stakeholders dealing with competing priorities.
• Experience with security risk assessments, IT audit, and GRC software (e.g., ServiceNow, Archer, ZenGRC, etc.)
• Familiarity with common security compliance, certification, and attestation frameworks and regulations (i.e. SOC 2, ISO 27001, HIPAA, SOX, HITRUST)
• Experience working successfully in a distributed-systems environment with cloud-native deployment models.
• Experience in designing and understanding complex technology architectures and applying best practices to ensure existing and new system design adheres to baseline controls and security best practises 

Location 

This role will be remote but is not eligible to be hired in San Francisco, CA, Oakland, CA, San Jose, CA, or the surrounding areas. 

What We Offer

There are many benefits to working at Twilio, including, in addition to competitive pay, things like generous time-off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.

Twilio thinks big. Do you?

We like to solve problems, take initiative, pitch in when needed, and are always up for trying new things. That’s why we seek out colleagues who embody our values — something we call Twilio Magic. Additionally, we empower employees to build positive change in their communities by supporting their volunteering and donation efforts.

So, if you’re ready to unleash your full potential, do your best work, and be the best version of yourself, apply now!

If this role isn’t what you’re looking for, please consider other open positions.

The estimated pay ranges for this role are as follows:

• Based in Colorado: $198,000 - $220,000
• Based in New York, Washington State or California (outside the San Francisco Bay Area): $209,000 - $233,000
• This role may be eligible to participate in Twilio’s equity plan. All roles are eligible for the following benefits: health care insurance, 401(k) retirement account, paid sick time, paid personal time off, paid parental leave.

The successful candidate’s starting salary will be determined based on permissible, non-discriminatory factors such as skills, experience, and geographic location within the state.