Staff Engineer, AI Security at Twilio

What you'd actually do

Serve as the primary subject matter expert for all AI and machine learning security initiatives across security and R&D.

Design and manage AI gateways to provide a centralized control plane for authentication and authorization and rate limiting across all model and tool interactions.

Build and maintain an autonomous security agentic framework that utilizes multi agent orchestration for end to end investigation and alert triage and remediation.

Develop agentic identity models using OAuth 2.1 to propagate identity across trust boundaries and prevent the confused deputy problem.

Help govern the AI augmented software development lifecycle by integrating real time security gates into the developer environment and CI/CD pipeline.

Skills

Required

security engineering
AI security operations (MLSecOps)
orchestrating multi-agent systems
AWS Strands
LangGraph
CrewAI
runtime isolation
PII redaction
indirect prompt injection
agentic environments
AI-specific frameworks
MITRE ATLAS
MAESTRO
OWASP Top 10 for LLMs/Agents/MCP
threat modeling
direct prompt injection
training data poisoning
tool poisoning
data exfiltration
agentic workflows
securing AI pipelines
data ingestion
model training
model deployment
model monitoring
communication skills
AI risks
actionable business logic

Nice to have

modern application security tooling
SAST
SCA
DAST
AI specific vulnerabilities
identity standards
OAuth 2.1
PKCE
AI Red Teaming
adversarial simulations
Large Language Models (LLMs)
agentic systems
Python
Go
container security
workload isolation
autonomy
drive high impact outcomes
ambiguous environments
identifying and executing on critical projects
predefined roadmaps
direct supervision

What the JD emphasized

8+ years of experience in security engineering with at least 3 years focused on AI or machine learning security operations (MLSecOps).

Expertise in orchestrating multi-agent systems with AWS Strands, LangGraph, and CrewAI, specializing in runtime isolation, PII redaction, and defending against indirect prompt injection in agentic environments.

Hands-on experience with AI-specific frameworks (e.g., MITRE ATLAS, MAESTRO, OWASP Top 10 for LLMs/Agents/MCP) to threat model and defend against a wide spectrum of risks, including direct/indirect prompt injection, training data poisoning, tool poisoning, and data exfiltration within agentic workflows.

Proficiency in securing end-to-end AI pipelines, from data ingestion and training to model deployment and monitoring.

**Who we are **

At Twilio, we’re shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions tohundreds of thousands of businessesand empower millions of developers worldwide to craft personalized customer experiences.

Our dedication to remote-first work, and strong culture of connection and global inclusion means that no matter your location, you’re part of a vibrant team with diverse experiences making a global impact each day. As we continue to revolutionize how the world interacts, we’re acquiring new skills and experiences that make work feel truly rewarding. Your career at Twilio is in your hands.

We use Artificial Intelligence (AI) to help make our hiring process efficient. That said, every hiring decision is made by real Twilions!

See yourself at Twilio

Join the team as Twilio’s next Staff Engineer, AI Security.

About the job

As a Staff Engineer, AI Security on the AppSec team, you’ll lead autonomous defense for the AI lifecycle. Build multi-agent frameworks and secure gateways while integrating real-time security gates and identity standards. By mentoring Security and R&D to define the MLSecOps roadmap, you’ll ensure a "secure-by-default" future for agentic workflows and resilient AI innovation.

Responsibilities

In this role, you’ll:

Serve as the primary subject matter expert for all AI and machine learning security initiatives across security and R&D.
Design and manage AI gateways to provide a centralized control plane for authentication and authorization and rate limiting across all model and tool interactions.
Build and maintain an autonomous security agentic framework that utilizes multi agent orchestration for end to end investigation and alert triage and remediation.
Develop agentic identity models using OAuth 2.1 to propagate identity across trust boundaries and prevent the confused deputy problem.
Help govern the AI augmented software development lifecycle by integrating real time security gates into the developer environment and CI/CD pipeline.
Manage Agentic Security Solutions that secure AI lifecycle and manage AI workloads at runtime.
Author company wide AI security standards and implement these security checks across Twilio’s stack
Implement human in the loop checkpoints and transactional safety protocols for high impact or destructive agentic actions.
Partner with engineering leadership to set the long term roadmap for identity centric security and automated posture management.
Act as a knowledge multiplier by mentoring security engineers and developing secure by default paved road templates for R&D teams

**Qualifications **

Twilio values diverse experiences from all kinds of industries, and we encourage everyone who meets the required qualifications to apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!

Required:

8+ years of experience in security engineering with at least 3 years focused on AI or machine learning security operations (MLSecOps).
Expertise in orchestrating multi-agent systems with AWS Strands, LangGraph, and CrewAI, specializing in runtime isolation, PII redaction, and defending against indirect prompt injection in agentic environments.
Hands-on experience with AI-specific frameworks (e.g., MITRE ATLAS, MAESTRO, OWASP Top 10 for LLMs/Agents/MCP) to threat model and defend against a wide spectrum of risks, including direct/indirect prompt injection, training data poisoning, tool poisoning, and data exfiltration within agentic workflows.
Proficiency in securing end-to-end AI pipelines, from data ingestion and training to model deployment and monitoring.
Strong communication skills to translate complex AI risks into actionable business logic for stakeholders.

Desired:

Hands-on experience in modern application security tooling including SAST and SCA and DAST with experience adapting these tools to catch AI specific vulnerabilities like indirect prompt injection.
Expertise in identity standards including OAuth 2.1 and PKCE.
Experience with AI Red Teaming and conducting adversarial simulations against Large Language Models (LLMs) and agentic systems.
Proficiency in at least one general programming language (Python, Go, etc) with experience in container security and workload isolation.
Proven ability to operate with autonomy and drive high impact outcomes in ambiguous environments by identifying and executing on critical projects without predefined roadmaps or direct supervision.

Location

_ _This role will be remote based in Ireland

**Travel **

We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings.

What We Offer

Working at Twilio offers many benefits, including competitive pay, generous time off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.

Twilio thinks big. Do you?

We like to solve problems, take initiative, pitch in when needed, and are always up for trying new things. That's why we seek out colleagues who embody our values — something we call Twilio Magic. Additionally, we empower employees to build positive change in their communities by supporting their volunteering and donation efforts.

So, if you're ready to unleash your full potential, do your best work, and be the best version of yourself, apply now! If this role isn't what you're looking for, please consider other open positions.

Twilio is proud to be an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Additionally, Twilio participates in the E-Verify program in certain locations, as required by law.