Security Compliance & Regulatory Affairs Analyst
New
T
TwilioTechnology, Cloud, Telecom
Remote - USFull-TimeMiddle
SalaryBased in Colorado, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, Vermont or Washington D.C. : $128,560 - $160,700. Based in New York, New Jersey, Washington State, or California (outside of the San Francisco Bay area): $136,000 - $170,000. Based in the San Francisco Bay area, California: $151,120 - $188,900.
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- CybersecurityRisk Management
Requirements
- 5+ years of experience in security compliance, telecom compliance, regulatory affairs, GRC, or related domain within a global technology, cloud, or telecom environment
- Experience interpreting and operationalizing security frameworks and regulations (e.g., NIS 2, ISO 27001, SOC 2, telecom regulatory regimes)
- Experience mapping regulatory requirements to control frameworks, policies, and technical implementations
- Broad understanding of security architecture, networking, access control, software development, cryptography, and operations
- Ability to analyze ambiguous regulations and produce defensible interpretations
- Strong written communication skills with ability to produce audit-ready documentation
- Proven ability to collaborate across Legal, Engineering, Security, Product, Sales, and Risk teams
- High level of self-sufficiency, critical thinking, and ownership
- Demonstrated ability to independently execute and deliver complex workstreams
- Ability to manage multiple concurrent priorities in a global, fast-evolving regulatory landscape
Responsibilities
- Support the SCRA Lead in executing Twilio’s global security regulatory strategy, including contributing to program design, prioritization, and long-term regulatory planning
- Independently interpret complex and ambiguous regulatory frameworks (e.g., NIS 2, EU transpositions, TSA UK) and provide structured outputs that support Lead-level strategy and decision-making
- Support the development and maintenance of regulatory repositories and systems of record, ensuring accuracy, traceability, and audit readiness
- Execute and continuously improve the Cyber Regulation Intake & Triage process in partnership with Legal
- Map regulatory requirements to internal control frameworks (e.g., UCF, ISO 27001, internal standards), identifying gaps and supporting Lead-driven control strategy decisions
- Develop regulator-ready and high-quality artifacts, including evidence mappings, control narratives, risk statements, and audit support documentation
- Identify, analyze, and escalate regulatory risks and audit obligations
- Partner cross-functional stakeholders including Legal, Public Policy, R&D, Security, Product, and Sales
- Drive execution of process improvements, tooling enhancements, and automation initiatives defined by the SCRA program
View Full Description & ApplyYou'll be redirected to the employer's site