Security Engineer, Incident Response

Security Engineer, Incident Response

Full-Time 60000 - 80000 £ / year (est.) No working from home possible
SendGrid

At a Glance

  • Tasks: Lead the response to security incidents and enhance Twilio's security processes.
  • Company: Join Twilio, a leader in communication technology with a focus on security.
  • Benefits: Enjoy competitive pay, generous time off, and wellness leave.
  • Other info: Remote role based in Ireland or the U.K. with opportunities for travel.
  • Why this job: Make a real impact on global security while developing your skills in a fast-paced environment.
  • Qualifications: 3+ years in security incident response and expertise in cloud environments required.

The predicted salary is between 60000 - 80000 £ per year.

The Security Incident Response Team (SIRT) is looking for a Security Engineer who is passionate about solving Twilio’s mission of security and reliability by working across the organization to lead the technical response to security events and incidents across Twilio’s global infrastructure, services and applications by effectively conducting triage, containment, remediation and driving post-incident betterments. You will work within a team that partners with R&D Engineering and R&D Business teams to develop scalable processes and technical solutions.

You will be a valued member of a team of deeply technical Security Engineers to focus on creating bespoke and standard Security response processes, enhancing our capabilities for threat mitigation and incident response, and then automating as much as you possibly can (and more)! You will help us to grow our global, scaled team and program.

Responsibilities:

  • Lead and support the response to all security events and incidents across Twilio’s complex global infrastructure, services and applications.
  • Be responsible for documentation of incidents and projects you work on and craft best practices as runbooks and standard operating procedures to share knowledge across teams.
  • Work cross-collaboratively to understand and help solve challenges related to a broad spectrum of threat actors and activity.
  • Work to improve Twilio’s security and reliability posture by driving identified betterments from security events and incidents.
  • Rapidly acquire new technical skills and knowledge in a fast-paced, highly disruptive industry environment.
  • Own the security incident lifecycle, respond to incidents and participate in on-call rotation and participate in RCAs for security incidents.
  • Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team’s work.
  • Provide mentorship, support, and care for the team in a way that enables long-term career development, happiness, and success at scale.

Qualifications Required:

  • Proven experience: 3+ years of security incident response in a production-cloud environment.
  • Subject-matter expert on security issues and technologies.
  • Ability to utilize AI for comprehensive, complex security incident response activities delivering high fidelity detections.
  • Advanced knowledge of service-oriented architectures, as well as experience with security tools and technologies fit for a cloud environment.
  • Experience working across a technology stack on difficult security challenges and initiatives.
  • Experience with SIEM platforms and the ability to extend their functionality.
  • Experience with SOAR tools and automating manual security processes.
  • Experience in either AWS, GCP, or other large cloud platform.
  • Excellent written and verbal communication skills.
  • Ability to influence and build effective working relationships with every level of the organization.

Desired:

  • AI Model Security & Posture Management: Support Implementation of controls and safeguards to prevent AI vulnerabilities, such as prompt injections, model evasion, and data poisoning.
  • AI-Driven Threat Response: Utilize GenAI and LLM-based security use cases to rapidly interpret alerts, reduce false positives, and contextualize threat data.
  • Artifact & Evidence Triage: Collects intrusion artifacts and forensically sound images to analyze malware, trojans, and source code.
  • Threat Intelligence Integration: Monitors external vendor data and threat intelligence to analyze trends and proactively defend against emerging risks.

Location: This role will be remote, and based in Ireland or U.K.

Travel: We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings.

What We Offer: Working at Twilio offers many benefits, including competitive pay, generous time off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.

Twilio is proud to be an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Additionally, Twilio participates in the E-Verify program in certain locations, as required by law.

Security Engineer, Incident Response employer: SendGrid

Twilio is an exceptional employer that fosters a collaborative and innovative work culture, particularly for the Security Engineer role. With a focus on employee growth, Twilio offers competitive pay, generous time off, and comprehensive benefits, all while empowering team members to develop their skills in a fast-paced environment. Working remotely from Ireland or the U.K., employees enjoy the flexibility to balance their professional and personal lives while contributing to meaningful security initiatives across a global infrastructure.

SendGrid

Contact Details:

SendGrid Recruitment Team

We think you need these skills to ace Security Engineer, Incident Response

Security Incident Response
Cloud Security
AI Utilisation for Security
Service-Oriented Architectures
SIEM Platforms
SOAR Tools
AWS