Security Compliance Associate Analyst
See yourself at Twilio
Join the team as Twilio’s next Security Compliance Associate Analyst.
About the job
This position is needed to play a key role in working closely with Product teams to ensure they are compliant with security regulations and industry best practices.
The Security Compliance Associate Analyst will be a key member of the Security Compliance & Assurance program at Twilio, focused on maturing our Security and Compliance posture through advisory / consulting, conducting gap assessments, and playing a key role in preparing internal stakeholders for certification activities. They will work closely with our Product teams to ensure products are compliant with regulations and implement industry best practice security measures (e.g. HIPAA, SOC2, ISO 27001, HITRUST, FedRAMP).
Responsibilities
In this role, you’ll:
Work effectively with numerous cross-functional stakeholders across the company (Sales, Engineering, Product, Legal, Finance, IT, HR, etc.) to drive improvements in Security and Compliance controls, standards, process design, continuous monitoring, project management and documentation.
Advise on Security and Compliance control designs and architecture patterns. Work with the technical security teams and their business counterparts to implement controls, metrics, and automation to improve the security posture of the organization.
Evaluate technology solutions and identify security gaps against security baselines and compliance requirements, partnering with cross-functional teams to clarify risk in the business context, recommend remediation activities and timelines, and escalate issues as needed for visibility.
Improve internal processes to promote consistent and fact-based conclusions. Leverage and improve existing project management tools to provide metrics and reporting standardization.
Qualifications
Twilio values diverse experiences from all kinds of industries, and we encourage everyone who meets the required qualifications to apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!
Required:
3+ years of Compliance, Assurance, and / or Risk Management experience, working with security-centric risk management or compliance frameworks such as HIPAA, HITRUST, FedRAMP, ISO/IEC 27001, PCI DSS, NIST CSF, NIST 800-53 and / or IRAP.
1+ years of working with technical security and Engineering / IT to implement technical control solutions (preferably within code deployment pipelines and public cloud solutions).
1+ years of project management experience in security or another technical field, including defining overall project scope, tracking project performance, communicating project status to management.
Ability to work in a dynamic, fast-paced environment that requires constant prioritization
Demonstrate strong verbal and written communication skills, and ability to translate complex technical or security requirements or risks into business language that can be understood by various audiences.
Ability to think critically and solve problems, create win-win solutions.
Experiencing using or creating collateral to effectively tell a compliance or security “story”, including the use of various formats and visuals.
Desired:
Experience and familiarity with cloud security techniques and working with public cloud solutions including but not limited to AWS and GCP.
Experience and familiarity with securing code deployment pipelines and Infrastructure as Code (IaC).
CISA, CISM, GIAC, CISSP or other Information Security related certification is highly preferred.
Location
This role will be remote, and based in Ireland.
Travel
We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings.
What We Offer
Working at Twilio offers many benefits, including competitive pay, generous time off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.
About the job
Apply for this position
Security Compliance Associate Analyst
See yourself at Twilio
Join the team as Twilio’s next Security Compliance Associate Analyst.
About the job
This position is needed to play a key role in working closely with Product teams to ensure they are compliant with security regulations and industry best practices.
The Security Compliance Associate Analyst will be a key member of the Security Compliance & Assurance program at Twilio, focused on maturing our Security and Compliance posture through advisory / consulting, conducting gap assessments, and playing a key role in preparing internal stakeholders for certification activities. They will work closely with our Product teams to ensure products are compliant with regulations and implement industry best practice security measures (e.g. HIPAA, SOC2, ISO 27001, HITRUST, FedRAMP).
Responsibilities
In this role, you’ll:
Work effectively with numerous cross-functional stakeholders across the company (Sales, Engineering, Product, Legal, Finance, IT, HR, etc.) to drive improvements in Security and Compliance controls, standards, process design, continuous monitoring, project management and documentation.
Advise on Security and Compliance control designs and architecture patterns. Work with the technical security teams and their business counterparts to implement controls, metrics, and automation to improve the security posture of the organization.
Evaluate technology solutions and identify security gaps against security baselines and compliance requirements, partnering with cross-functional teams to clarify risk in the business context, recommend remediation activities and timelines, and escalate issues as needed for visibility.
Improve internal processes to promote consistent and fact-based conclusions. Leverage and improve existing project management tools to provide metrics and reporting standardization.
Qualifications
Twilio values diverse experiences from all kinds of industries, and we encourage everyone who meets the required qualifications to apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!
Required:
3+ years of Compliance, Assurance, and / or Risk Management experience, working with security-centric risk management or compliance frameworks such as HIPAA, HITRUST, FedRAMP, ISO/IEC 27001, PCI DSS, NIST CSF, NIST 800-53 and / or IRAP.
1+ years of working with technical security and Engineering / IT to implement technical control solutions (preferably within code deployment pipelines and public cloud solutions).
1+ years of project management experience in security or another technical field, including defining overall project scope, tracking project performance, communicating project status to management.
Ability to work in a dynamic, fast-paced environment that requires constant prioritization
Demonstrate strong verbal and written communication skills, and ability to translate complex technical or security requirements or risks into business language that can be understood by various audiences.
Ability to think critically and solve problems, create win-win solutions.
Experiencing using or creating collateral to effectively tell a compliance or security “story”, including the use of various formats and visuals.
Desired:
Experience and familiarity with cloud security techniques and working with public cloud solutions including but not limited to AWS and GCP.
Experience and familiarity with securing code deployment pipelines and Infrastructure as Code (IaC).
CISA, CISM, GIAC, CISSP or other Information Security related certification is highly preferred.
Location
This role will be remote, and based in Ireland.
Travel
We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings.
What We Offer
Working at Twilio offers many benefits, including competitive pay, generous time off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.