Reporting to the General Counsel, the Vice President of Trust and CISO will drive Twilio’s security strategy, and then regularly communicate progress on it to our executives, our Board of Directors, our customers and, to a lesser degree, the information security community. The VP/CISO will be accountable for protecting Twilio’s corporate, employee and customer data from compromise by continuing to mature our security program, which is designed to inhibit, detect and respond to threats.
To be successful at this mission, you will lead and empower our team of security professionals and implement the processes and technologies required to enable them. You will partner with other groups within Twilio to ensure compliance with company policies, in-flight security programs and regulatory requirements.
About the job:
This position will partner with our Engineering, Product Management and Privacy teams to support Twilio’s objective of setting a new bar for trust. The candidate must be an exceptional leader who is results-driven and able to articulate complex concepts to all audiences, ranging from technical contributors inside and outside the company, to executive leadership and Board members. The ideal candidate is a consensus builder, excellent communicator and integrator of people and processes with a pragmatic approach to security, balancing user experience and risk management. You will represent Twilio externally with customers on a regular basis, building and raising our trust and security reputation year over year.
- Provide a security platform for the company, by driving and socializing a comprehensive, enterprise-wide information security and risk management program to protect the integrity, confidentiality and availability of Twilio’s information assets; refine strategy as necessary to adapt to evolving risks and threats
- Develop business-relevant metrics to measure the efficiency and effectiveness of the company’s security program; provide regular status updates to senior business leaders and the board of directors
- Advocate for and help the security organization to prioritize when programs are stalled or challenged due to competing priorities
- By partnering with other executive leaders, support the development and implementation of security controls, standards, policies and procedures to ensure continuous monitoring and protection of information systems and physical property; ensure that compliance is maintained against both corporate security policies and industry standards
- Ensure the response to security incidents, from investigation to remediation to litigation support activities, is appropriate and thorough
- Help mature the company’s vendor risk management program
- Oversee the security assessment and integration efforts throughout the M&A process and be prepared to share the change in risk posture and its consequences to executive management
- Partner closely with the Product Management and Engineering teams on product security programs and certifications that support Twilio’s customer trust objectives
- Partner with information technology operations teams in the development and maintenance of information privacy policies and procedures in coordination with management and legal counsel
- Mature the corporate security awareness and training program
- Provide subject-matter expertise to executive leadership on a broad range of security topics
- Bring the physical security program to the next level by implementing global safety policies, providing services to protect personnel and company assets in our offices around the world from workplace crime and violence, and ensuring compliance with OSHA and other applicable safety regulations
- Support sales efforts by presenting the company’s security strategy, goals and results to potential customers or at industry conferences
- Bachelor's degree in engineering, computer science, information systems or related discipline
- 15 or more years of experience working within the security technology or services industry
- 5 or more years of experience successfully working at the Sr. Director or VP level directing security programs
- Extensive technical knowledge of security technology, business system continuity planning, auditing and risk management as it relates to information security
- Demonstrated experience partnering with engineering teams to drive change and integrate security into the DNA of an organization
- Demonstrated experience hiring, managing, developing and retaining security professionals at all levels
- Demonstrated experience partnering with executive-level stakeholders to drive change across multiple business functions
- Excellent written and oral communication skills; proven experience articulating security and risk-related concepts to all audiences, including C-level executives, Board members and the wider security community
- Outstanding interpersonal skills; proven ability to work effectively with technical contributors, management and executive leadership
- Superior analytical and problem-solving abilities
Twilio makes communications easy and powerful. With Twilio's platform, businesses can make communications relevant and contextual by embedding real-time communication and authentication capabilities directly into their software applications. Twilio gives businesses the ability to innovate, prototype, create, and connect with their customers at the right time and in the right way. Founded in 2008, Twilio is a public company based in San Francisco, California with other offices around the world.
Twilio is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal opportunity regardless of race, color, ancestry, religion, gender, gender identity, parental or pregnancy status, national origin, sexual orientation, age, citizenship, marital status, disability, or Veteran status and operate in compliance with the San Francisco Fair Chance Ordinance.