This job has expired

This position was posted on March 24, 2026 and is likely no longer accepting applications. We've kept it here for historical reference. Check out the similar jobs below!

Security Compliance & Regulatory Affairs Analyst

Twilio Inc.

Job Overview

Location

Remote - Alberta, Canada (DNU); Remote - British Columbia, Canada (DNU); Remote - Ontario, Canada (DNU)

Job Type

Full-time

Full Job Description

📋 Description

• As a Security Compliance & Regulatory Affairs Analyst at Twilio, you will play a critical role in safeguarding the company’s global operations by interpreting and operationalizing complex cybersecurity and telecom regulations such as NIS 2, TSA UK, and Singapore IMDA, directly supporting Twilio’s mission to build trusted, secure communication platforms used by hundreds of thousands of businesses and millions of developers worldwide.
• You will independently own end-to-end regulatory workstreams — from analysis and triage to control mapping and audit readiness — ensuring Twilio remains compliant across evolving global jurisdictions while enabling innovation without compromising security or regulatory integrity.
• You will join Twilio’s Security, Compliance & Regulatory Affairs (SCRA) team, a remote-first, globally distributed group dedicated to aligning regulatory obligations with technical and business execution, operating within a culture that values autonomy, critical thinking, and proactive problem-solving in service of Twilio’s Magic values.
• Your day-to-day responsibilities will include:
• Supporting the SCRA Lead in designing and executing Twilio’s global security regulatory strategy, including prioritization of regulatory obligations and long-term planning for emerging frameworks across EU, UK, APAC, and LATAM regions.
• Independently interpreting ambiguous and complex regulatory texts (e.g., NIS 2 directive transpositions, UK Telecoms Security Act) to produce structured, defensible analyses that inform leadership decisions and program direction.
• Developing and maintaining regulatory repositories and systems of record, ensuring accuracy, traceability, version control, and audit readiness for internal and external stakeholders.
• Executing and refining the Cyber Regulation Intake & Triage process in partnership with Legal, ensuring consistent classification, routing, and lifecycle tracking of incoming regulatory obligations across product lines and geographies.
• Mapping regulatory requirements to internal control frameworks such as UCF, ISO 27001, and SOC 2, identifying control gaps and recommending remediation or mitigation strategies to support risk-based decision-making.
• Creating regulator-ready artifacts including evidence mappings, control narratives, risk statements, and audit support documentation that withstand scrutiny from external auditors and regulatory bodies.
• Proactively identifying, analyzing, and escalating regulatory risks and compliance gaps, enabling proactive planning and visibility at the program and executive levels.
• Partnering cross-functionally with Legal, Public Policy, R&D, Security, Product, Sales, and Risk teams to align regulatory interpretations with technical implementation and business objectives, ensuring compliance is embedded, not bolted-on.
• Driving process improvements, tooling enhancements, and automation initiatives — such as streamlining intake workflows or enhancing regulatory tracking systems — to increase efficiency and scalability of the SCRA program.
• Operating with high ownership and accountability, delivering complex workstreams independently while staying aligned with strategic direction set by the SCRA Lead, demonstrating initiative and judgment in ambiguous environments.
• Continuously building expertise in global telecom and cybersecurity regulatory landscapes, positioning yourself as a trusted advisor within Twilio’s GRC ecosystem and advancing your career in a high-impact, specialized domain.

🎯 Requirements

• 5–8+ years of experience in security compliance, telecom compliance, regulatory affairs, GRC, or related domains within a global technology, cloud, or telecom environment.
• Proven experience interpreting and operationalizing security frameworks and regulations such as NIS 2, ISO 27001, SOC 2, and telecom-specific regimes (e.g., TSA UK, IMDA).
• Demonstrated ability to map regulatory requirements to internal control frameworks (e.g., UCF, ISO 27001) and translate them into actionable policies, controls, and technical implementations.
• Strong written communication skills with a track record of producing audit-ready, regulator-defensible documentation such as evidence packages, control narratives, and risk statements.
• Ability to collaborate effectively across Legal, Engineering, Security, Product, Sales, and Risk teams to support program objectives and ensure alignment between regulatory interpretation and business execution.
• High level of self-sufficiency, critical thinking, and ownership, with the ability to execute complex workstreams end-to-end under high-level guidance without requiring detailed instruction.

🏖️ Benefits

• Competitive base salary range of $120,640 – $150,800 CAD, with a target bonus percentage of 15% based on performance and company results.
• Comprehensive health and wellness benefits, including medical, dental, vision, and mental health support, along with generous parental leave and wellness time off.
• Retirement savings program with company contributions, equity grant eligibility, and access to financial planning resources to support long-term financial well-being.
• Remote-first work flexibility, allowing you to work from anywhere in Alberta, British Columbia, or Ontario, Canada, with opportunities for occasional in-person collaboration to build team connections.
• Access to Twilio’s Impact Fund and volunteering support, empowering you to contribute to positive change in your community through donation matching and paid time off for service.
• Ongoing learning and development opportunities, including access to internal training, conferences, and certifications to deepen expertise in global regulatory frameworks and GRC best practices.

Skills & Technologies

AWS

GCP

Remote

$120k-150k

Degree Required

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

Twilio Inc.

Visit Website

About Twilio Inc.

Twilio Inc. provides cloud-based communications platforms that enable developers to integrate voice, messaging, video, email, and authentication into applications via APIs. Founded in 2008, the company offers programmable services for SMS, voice calls, WhatsApp, email, and IoT connectivity, serving enterprises, startups, and communication service providers globally. Twilio operates a pay-as-you-go model, allowing customers to scale usage without managing underlying telecom infrastructure. The company is headquartered in San Francisco, California, and trades on the New York Stock Exchange under the symbol TWLO.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.