More About Me
Digital Defender with a Mission
I’m Jarrel Thomas, a cybersecurity analyst with over six years of experience bridging IT support, incident response, and governance, risk, and compliance (GRC). My career began on the frontline of IT operations, where I developed a deep technical foundation before transitioning into the security space.
In my experience……
At Twilio, I work as a Technical Support Engineer specializing in email fraud and security, where I’ve played a key role in detecting and mitigating account takeover incidents. Leveraging tools like Splunk and advanced SQL queries, I’ve conducted in-depth investigations into malicious email activity, identified anomalies, and improved threat detection workflows. I’ve also contributed to SOC 2 compliance by gathering evidence, aligning procedures with audit requirements, and supporting continuous monitoring processes. Beyond my technical responsibilities, I lead team-wide trainings and mentor new hires to strengthen incident response readiness and knowledge sharing across teams.
At the City of Redlands, I supported the organization’s cybersecurity posture by implementing ISO 27001 access controls and ensuring user privileges aligned with the principle of least privilege. I spearheaded a project to upgrade the city’s police department mobile systems to meet NIST mobile security standards, deploying multi-factor authentication and VPN hardening protocols. My work helped reduce unauthorized access risks and ensured alignment with federal security compliance. I also maintained asset documentation, which reduced the risk of shadow IT by enhancing visibility and governance over hardware and software resources
Community Leadership
As part of my commitment to advancing the cybersecurity profession, I contribute to ISC²’s certification development efforts as a subject matter expert. This work allows me to support the growth of a more diverse and capable security workforce by helping shape accessible, high-quality certification content. Through reviewing and developing exam materials, I aim to ensure that industry standards remain relevant, inclusive, and aligned with the evolving needs of today’s cybersecurity professionals.
I also serve on the Finance, Audit, and Risk Committee for EnVision, a nonprofit organization where I help strengthen internal security practices. In this role, I conduct risk assessments and audit compliance with policies related to the handling of personally identifiable information (PII). My efforts support regulatory alignment and ensure the organization maintains eligibility for critical grant funding, including upcoming opportunities for 2025. This work allows me to apply my GRC expertise in a mission-driven environment while promoting responsible data stewardship within the nonprofit sector.
One of the most rewarding aspects of my journey at Twilio has been serving on the leadership board of the Black Twilions Employee Resource Group. In this role, I’ve had the opportunity to lead initiatives that drive both professional development and cultural impact. I spearheaded the creation of the Black Twilions Academy — a career development and mentorship program designed to help Black professionals navigate growth opportunities and build leadership skills within the organization. I also collaborated closely with senior leaders to design programs that not only supported career advancement, but also deepened Twilio’s commitment to inclusion. From organizing company-wide events for Black History Month and Juneteenth to forging partnerships with HBCUs, my goal has always been to create meaningful pathways for underrepresented communities and inspire broader change across the industry.