The Staff Security Enablement Engineer will be responsible for developing, implementing, measuring, and managing process and tooling to enhance security enablement for technical resources across Twilio. This role is critical in fostering a security-first culture by engaging, training, and empowering Twilio employees to act as security practitioners to support and up-level Twilio's security posture. In this role, you'll:
1. Design and implement the Security Champions Program, including establishing OKRs, defining roles, and defining processes to monitor efficacy of the Security Champions Program.
2. Create a comprehensive framework for identifying, recruiting, and retaining influential Security Champions from various teams across Twilio.
3. Organize and lead regular technical meetings, forums, and events to foster collaboration and knowledge sharing among Security Champions.
4. Develop and maintain program documentation, guidelines, and best practices with a strong technical focus, while maintaining usability.
5. Curate and deliver live training material to meet specific educational needs across engineering teams.
6. Act as a liaison and advocate between engineers and security; assisting with the rollout of tools that require engineering involvement and acting as a channel of communication to surface bi-directional feedback.
7. Collaborate with the Learning and Development teams to integrate security training into existing learning platforms.
8. Work closely with other Information Security teams to identify opportunities to expand security enablement opportunities across Twilio.
We are seeking a security practitioner capable of being hands-on with a developer-first mentality, and passionate about developing and growing others to become effective security practitioners. Not all applicants will have skills that match a job description exactly. Twilio values diverse experiences in other industries, and we encourage everyone who meets the required qualifications to apply. While having 'desired' qualifications make for a strong candidate, we encourage applicants with alternative experiences to also apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!
1. Bachelor's degree in Computer Science, Software Engineering, or a related field. Master's degree preferred.
2. 7+ years of experience in information security, cybersecurity, software development, or a related technical field.
3. Prior experience coordinating or contributing to a Security Champions or equivalent program.
4. Strong knowledge of security principles, practices, and frameworks (e.g., ISO 27001, NIST, CIS).
5. Experience with secure coding practices, application security, secure design, and threat modeling.
6. Excellent communication, presentation, and interpersonal skills, with the ability to convey technical concepts to non-technical audiences.
7. Ability to work collaboratively with cross-functional teams and build strong relationships.
Desired:
1. Proven experience in program management, technical training, and employee engagement.
2. Deep understanding of security frameworks including OWASP and applicability in software development.
3. Analytical Skills: Ability to assess program performance and identify areas for improvement.
4. Certification in information security (e.g., CISSP, CISM, CEH) or relevant technical certifications (e.g., CSSLP, OSCP) is a plus.
Twilio powers real-time business communications and data solutions that help companies and developers worldwide build better applications and customer experiences. Although we're headquartered in San Francisco, we have presence throughout South America, Europe, Asia, and Australia. We're on a journey to becoming a global company that actively opposes racism and all forms of oppression and bias. At Twilio, we support diversity, equity & inclusion wherever we do business.
There are many benefits to working at Twilio, including, in addition to competitive pay, things like generous time-off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.
#J-18808-Ljbffr