Third Party Risk Analyst 2 - Remote

Overview

The Security Risk Analyst will be a key member of the Security Risk Management program at Twilio, focused on maturing our Security risk posture by preparing internal stakeholders for certification activities. The team works closely with our Product and Engineering teams to ensure all areas of cyber risk are identified across Twilio and that risk methodologies are operationally effective and in compliance with regulations and industry best practice security measures.

In Short

• Conduct security risk assessments for third party vendors and service providers.
• Identify and report third party security vulnerabilities.
• Review industry certifications and compliance reports.
• Assist in developing third party security risk management frameworks.
• Monitor and report on security incidents related to third party engagements.
• Collaborate with various teams to manage third party risks.
• Stay updated on emerging security threats and compliance requirements.
• Prepare reports and presentations on security risk findings.

Requirements

• 2-3 years of Third Party Risk Management experience.
• Strong background in identifying and analyzing risks.
• Proficiency in security risk assessment methodologies.
• Experience implementing technical risk/control solutions.
• Biased towards automation and tooling.
• Excellent communication skills.
• Ability to manage multiple projects under tight deadlines.
• Comfortable with ambiguity.

Benefits

• Competitive pay.
• Generous time off.
• Ample parental and wellness leave.
• Healthcare benefits.
• Retirement savings program.