Detection and Response Program Manager

See yourself at Twilio

Join the team as Twilio’s next Detection and Response Program Manager.

Who we are & why we’re hiring

Twilio powers real-time business communications and data solutions that help companies and developers worldwide build better applications and customer experiences.

Although we're headquartered in San Francisco, we have presence throughout South America, Europe, Asia and Australia. We're on a journey to becoming a global company that actively opposes racism and all forms of oppression and bias. At Twilio, we support diversity, equity & inclusion wherever we do business.

About the job

Our team is seeking a seasoned Detection and Response Program Manager with a robust background in cybersecurity operations in a dynamic, fast-paced environment. The ideal candidate will demonstrate expertise in threat detection, incident response, and Intelligence program management within complex systems and applications. You will oversee the development and implementation of comprehensive detection and response projects, OKRs, and initiatives, leveraging existing technologies and industry best practices. You are adept at leading and orchestrating rapid response efforts, coordinating across technical teams and stakeholders to mitigate cyber threats, minimize organizational risk, and restore normal operations promptly. Demonstrated proficiency in incident management, crisis communication, cross-functional collaboration teams under pressure. 

Responsibilities

In this role, you’ll:

Incident Response Management

• Manage the incident response coordination and communication process during active incidents spearheading the response and resolution efforts for critical security, privacy, and fraud incidents
• Serve as the main point of contact for the Treat and Response team on reporting and escalation of security, privacy, and fraud investigations, managing the incident lifecycle from start to finish
• Create, update, and deliver briefings and communications via all available channels to CISO, CDO, Legal, senior leadership and other stakeholders
• Coordinate investigation, containment, and other response activities with Incident Command, engineering, product, and development teams inviting the appropriate people into an incident investigation to ensure a quick mobilization for high-severity incidents
• Run the lessons learned process and document improvements and betterments including preparing root cause analysis and blameless post incident reviews assigning tasks and recommendations to the appropriate teams for proper handover and closure

Threat Detection Program Management

• Coordinate and facilitate detection engineering, hunting, threat intelligence, incident response, and insider risk projects and activities and consistently track and report on projects stages, issues, and progress, 
• Support our OKRs planning, create plans to achieve goals within budget and timelines, and provide feedback to internal stakeholders driving prioritization while ensuring optimization
• Translate detection and response business requirements into security response deliverables working with our teams comparing and assessing current vs future state capabilities and roadmap, clearly communicating business impact and success metrics.
• Lead regular scenario-based incident response exercises, tabletops, and simulations to continuously assess and enhance incident response run books and validate security controls

Qualifications 

Not all applicants will have skills that match a job description exactly. Twilio values diverse experiences in other industries, and we encourage everyone who meets the required qualifications to apply. While having “desired” qualifications make for a strong candidate, we encourage applicants with alternative experiences to also apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!

Required:

• Experience in working with customers and stakeholders to get the right outcomes and has firm understanding of how to manage projects, tasks and deliverables.
• Ability to remain calm and focused under high pressure situations and able to effectively manage the expectations of a team of cross functional professionals
• Negotiations and communication skills communicating complex topics in a clear and concise manner to different tiers of audiences (technical and executives)
• Good understanding of Security concepts, tooling, incident response, and related activities, including preparation, detection, analysis, containment, and recovery
• 3-5 years of experience managing security incidents, or major service incidents.
• This position requires on-call work after business hours and on weekends or holidays on an as-needed basis.

Location

This role will be remote but is not eligible to be hired in San Francisco, CA, Oakland, CA, San Jose, CA, or the surrounding areas.

Travel

We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings.

What We Offer

There are many benefits to working at Twilio, including, in addition to competitive pay, things like generous time-off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.

Twilio thinks big. Do you?

We like to solve problems, take initiative, pitch in when needed, and are always up for trying new things. That's why we seek out colleagues who embody our values — something we call Twilio Magic. Additionally, we empower employees to build positive change in their communities by supporting their volunteering and donation efforts.

So, if you're ready to unleash your full potential, do your best work, and be the best version of yourself, apply now!

If this role isn't what you're looking for, please consider other open positions.

*Please note this role is open to candidates outside of Colorado, California, New York, and Washington. The information below is provided for candidates hired in those locations only.

The estimated pay ranges for this role are as follows:

• Based in Colorado: $123,000-$154,000.
• This role may be eligible to participate in Twilio’s equity plan and corporate bonus plan. All roles are eligible for the following benefits: health care insurance, 401(k) retirement account, paid sick time, paid personal time off, paid parental leave.

The successful candidate’s starting salary will be determined based on permissible, non-discriminatory factors such as skills, experience, and geographic location within the state.