Remote Job Description

You will be responsible for helping to lead and build out the vulnerability management team at Twitter. This team will oversee a number of efforts ranging from Twitter’s bug bounty program, to our vulnerability scanning systems, to our process for responding to reported vulnerabilities in Twitter software and systems. The overarching goal of the team is to reduce the number of vulnerabilities Twitter systems are susceptible to, both proactively and reactively. You will help identify vulnerability management risks and work with partner teams to manage them. You will help design, advocate, and build secure-by-default infrastructure that closes off entire classes of vulnerabilities.

As the vulnerability management tech lead, you will:

  • Support hiring for a growing vulnerability management team.

  • Set the technical direction of the team.

  • Work with the team to define the vulnerability management strategy and roadmap.

  • Implement and operationalize the vulnerability management program.

  • Partner with peer teams such as security testing, IT, and software engineering to align vulnerability management workflows with their respective efforts.

  • Monitor and measure Twitter’s vulnerability management practices.

  • Identify blockers to achieving Twitter’s vulnerability management goals.

  • Work with InfoSec leadership and partner teams to overcome these blockers.

  • Mentor and develop other members of the organization.


You will have many (but need not have all) of the following:

  • 3 or more years of relevant experience (jobs, grad school, etc) in information security.

  • Experience with vulnerability management best practices.

  • Familiarity with vulnerability scanning systems and other strategies for identifying vulnerabilities in deployed infrastructure.

  • Familiarity with dependency management monitoring, and techniques for identifying vulnerabilities in third party dependencies.

  • Experience addressing vulnerability management root causes and advocating for efforts that eliminate entire classes of vulnerabilities.

  • Experience working with a multitude of teams in large organizations to remediate known vulnerabilities.

  • Experience working with large scale infrastructure (100K+ systems).

  • Undergraduate degree or equivalent (engineering, social sciences, arts, etc. are all fine).

Company Description

Twitter is what’s happening and what people are talking about right now. For us, life's not about a job, it's about purpose. We believe real change starts with conversation. Here, your voice matters. Come as you are and together we'll do what's right (not what's easy) to serve the public conversation.

Additional Information

All your information will be kept confidential according to EEO guidelines.

Additional Information:

We care deeply about the people who use our platform. We strive to protect them and ensure they can make informed decisions about how they choose to use Twitter. We put our users first and consider their well-being in all of our decisions.

We care about making work rewarding and productive for everyone, with flexibility in where and how you work, wellness benefits, twenty weeks of parental leave, and unlimited vacation that we believe you should be taking.

We value diversity of experience and ideas. We love sharing knowledge and learning from each other. We have regular lightning talks and get together with the other Twitter teams for tech talks. And there are many study groups you can join.

The expected salary range for this role to be performed in Remote US is USD $146,000 - USD $204,000. Starting pay for the successful applicant will depend on a variety of job-related factors, which may include education, training, experience, location, business needs, or market demands. This range may be modified in the future.

This job is also eligible for participation in Twitter’s Performance Bonus Plan and Equity Incentive Plan subject to the terms of the applicable plans and policies.

Twitter offers a wide range of benefits to U.S.-based employees, including medical, dental, and vision insurance, 401(k) program with employer match, generous time off for vacation, sick time, and parental leave. Twitter’s benefits prioritize employee wellness and progressive support to our diverse workforce.