About this Incident Response Senior Engineer role at Twilio
Who we are
At Twilio, we’re shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions to hundreds of thousands of businesses and empower millions of developers worldwide to craft personalized customer experiences.
Our dedication to remote-first work, and strong culture of connection and global inclusion means that no matter your location, you’re part of a vibrant team with diverse experiences making a global impact each day. As we continue to revolutionize how the world interacts, we’re acquiring new skills and experiences that make work feel truly rewarding. Your career at Twilio is in your hands.
We use Artificial Intelligence (AI) to help make our hiring process efficient. That said, every hiring decision is made by real Twilions!
.
See yourself at Twilio
Join the team as Twilio’s next Security Engineer, Incident Response
About the job
The Security Incident Response Team (SIRT) is looking for a Senior Security Engineer who is passionate about solving Twilio’s mission of security and reliability by working across the organization to lead the technical response to security events and incidents across Twilio’s global infrastructure, services and applications by effectively conducting triage, containment, remediation and driving post-incident betterments. You will work within a team that partners with R&D Engineering and R&D Business teams to develop scalable processes and technical solutions.
You will be a valued member of a team of deeply technical Security Engineers to focus on creating bespoke and standard Security response processes, enhancing our capabilities for threat mitigation and incident response, and then automating as much as you possibly can (and more)! You will help us to grow our global, scaled team and program.
Responsibilities
In this role, you’ll:
- Lead and support the response to all security events and incidents across Twilio’s complex global infrastructure, services and applications.
- Be responsible for documentation of incidents and projects you work on and craft best practices as runbooks and standard operating procedures to share knowledge across teams.
- Work cross-collaboratively to understand and help solve challenges related to a broad spectrum of threat actors and activity.
- Work to improve Twilio’s security and reliability posture by driving identified betterments from security events and incidents.
- Rapidly acquire new technical skills and knowledge in a fast-paced, highly disruptive industry environment.
- Own the security incident lifecycle, respond to incidents and participate in on-call rotation and participate in RCAs for security incidents.
- Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team’s work.
- Provide mentorship, support, and care for the team in a way that enables long-term career development, happiness, and success at scale.
Qualifications
Twilio values diverse experiences from all kinds of industries, and we encourage everyone who meets the required qualifications to apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!
Required:
- Proven experience: 3+ years of security incident response in a production-cloud environment
- Subject-matter expert on security issues and technologies
- Ability to utilize AI for comprehensive, complex security incident response activities delivering high fidelity detections
- Advanced knowledge of service-oriented architectures, as well as experience with security tools and technologies fit for a cloud environment
- Experience working across a technology stack on difficult security challenges and initiatives
- Experience with SIEM platforms and the ability to extend their functionality
- Experience with SOAR tools and automating manual security processes
- Experience in either AWS, GCP, or other large cloud platform
- Excellent written and verbal communication skills
- Ability to influence and build effective working relationships with every level of the organization.
Desired:
- AI Model Security & Posture Management: Support Implementation of controls and safeguards to prevent AI vulnerabilities, such as prompt injections, model evasion, and data poisoning
- AI-Driven Threat Response: Utilize GenAI and LLM-based security use cases to rapidly interpret alerts, reduce false positives, and contextualize threat data
- Artifact & Evidence Triage: Collects intrusion artifacts and forensically sound images to analyze malware, trojans, and source code.
- Threat Intelligence Integration: Monitors external vendor data and threat intelligence to analyze trends and proactively defend against emerging risks.
Location
This role will be remote, and based in Ireland or U.K.
Travel
We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings.
What We Offer
Working at Twilio offers many benefits, including competitive pay, generous time off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.
Twilio thinks big. Do you?
We like to solve problems, take initiative, pitch in when needed, and are always up for trying new things. That's why we seek out colleagues who embody our values — something we call Twilio Magic. Additionally, we empower employees to build positive change in their communities by supporting their volunteering and donation efforts.
So, if you're ready to unleash your full potential, do your best work, and be the best version of yourself, apply now! If this role isn't what you're looking for, please consider other open positions.
Twilio is proud to be an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Additionally, Twilio participates in the E-Verify program in certain locations, as required by law.