GRC Infrastructure and Technology Specialist (Global) - Washington DC, New York, Los Angeles, or Mountain View

TikTok

Washington, DC

Why you should apply for a job with TikTok:

Employee well-being is supported via hybrid work, short-term counseling through our EAP and a premium subscription to Headspace.
We embrace diversity across all dimensions and provide employees with 9 employee resource groups globally, including our WOMEN ERG.
Comprehensive parental leave policy as well as fertility treatment through healthcare providers with a $20,000 lifetime maximum.

Get jobs straight to your inbox

Anonymous company reviews, virtual recruiting events, and a supportive community for women when you sign up.

#WWJV

Position summary

TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok has global offices, including Los Angeles, New York, London, Paris, Berlin, Dubai, Mumbai, Singapore, Jakarta, Seoul, and Tokyo. The Global Security Organization provides industry leading security and privacy services to ByteDance globally. Our organization uses four principles that guide our strategic and tactical operations. First, we champion trust and transparency, leading the charge in organizational transparency and execution of security and privacy capabilities that drive customer trust. Second, we are a business catalyst and enabler, embodying the DNA of technical innovation. Third, we drive risk informed and empowered decision making, giving our business leaders the information needed to make key decisions. Finally, we proactively identify and reduce risk while enabling innovative product development – to consistently build sustainable world-class security capabilities. As a part of the role for Governance, Risk and Compliance team (GRC) Administrator and Infrastructure Support, you will be a vital member of the Integrated Risk, Controls, and Compliance Assurance team and Business Operations Team in Global Security Organization (GSO) group of TikTok/ByteDance. You will be responsible for management of the Archer governance, risk and compliance (GRC) platform and user permission and views management. You will work within the Archer GRC platform to ensure accurate access permissions for platform users and that users have access on an as needed basis. Additionally, you will be responsible to manage and troubleshoot the infrastructure that is supporting Archer GRC on premises at TikTok/ByteDance. The candidate must also have the ability to communicate effectively (verbal and written), participate in cross-functional and individual contributor efforts independently and with minimal oversight. Additionally, you will be responsible for ensuring the platform risk access and views are appropriately restricted, and that user access lifecycles are enforced to appropriately grant and retract access as needed. Responsibilities: - Implement, administer, and manage the RSA Archer platform to ensure features, capabilities, functionality, performance, and processes are effective and efficient for the end user experience - Troubleshoot, diagnose, and resolve software, hardware, and other network and system/service issues - Manage Archer Control Panel (ACP) on dailly basis - Manage access to the Archer GRC platform by assigning access, tracking ownerships, and ensuring identity and access controls are in place - Assist with platform maintenance activities, troubleshooting and resolving production issues and end-user related issues - Conduct modeling and root cause analysis activities - Experience in running services on the servers and troubleshoot platform performance issues - Design, develop and test modules within the RSA Archer platform, including layout, workflow, reporting, notifications, questionnaires, access control, packaging, et - Participate and assist in platform upgrades, functionality and data migration activities - Install, test, and deploy new applications - Manage application, web and database servers - Experience in writing SQL queries and database backup and restore activities - Experience in flash back ups of Archer environments - Experience with Advanced Workflow Job Troubleshooting - Active participant in phased deployment of Archer GRC solutions and managing end user demands - Experience with HTML scripting is prefered - Experience with reviewing API code is prefered - Experience with basic command line prompts - Ability to perform Infrastructure hardware review to support Archer environment on a yearly basis - Integration experience of Archer with external systems is prefered - Perform operational actions on the GRC tool to including management of risk permissions, run reports, and provide limited views of risk data (as approved) - Experience in documenting technical design elements like workflow, access matrix, layout blueprints, notifications, etc., is a must - Provide development and configuration support based on technical requirements - Perform risk reporting, creating reports to inform stakeholders and risk owners - Demonstrate in-depth technical capabilities and professional knowledge and show willingness to learn new capabilities Minimum Qualifications: - Bachelors’ Degree or industry equivalent work experience in international security architecture and engineering in a converged security program - 3+ years of Archer GRC Administrator experience - Analytical and problem-solving skills - Excellent communication skills (verbal and written), ability to influence without authority - Demonstrated teamwork and collaboration skills, in particular in contributing to global and multi-functional teams - Highly motivated to contribute and grow within a complex area of emerging importance - Demonstrates excellent organizational direction, time management, problem-solving, prioritization, goal setting, motivation, negotiation, and interpersonal relations - Works well under pressure and within time/budget constraints to solve problems or meet objectives - Software Development Lifecycle (SDLC) experience and working in fast paced Agile environment is a must - Demonstrated analytical/problem solving skills and cross functional knowledge across multiple IT operational and security disciplines - Must possess a high degree of integrity, be trustworthy, and have the ability to lead and inspire change - Experience in a risk management role in a global enterprise - Knowledge of risk management frameworks Preferred Qualifications: - In depth knowledge of identity and access management (IAM) principles - Working knowledge of multidisciplinary security concepts (e.g., Incident Management, Vulnerability Management, Change Management, DevSecOps) - Experience with other modern GRC tooling, GRC leading practices, and GRC processes including control frameworks and control assessments - Experience reporting risk within a global enterprise, developing a culture of risk informed decision making - Archer GRC Administrator or a Certified Archer Professional certification would be a plus - Experience with SQL server and Windows Server is preferred You and your teammates will be responsible for ensuring the Archer GRC platform is effectively designed, functionally robust, and highly available to all platform users. The candidate must have experience in configuring various applications and questionnaires in Archer GRC. The candidate should also have experience in application management, identity and access management principles and an understanding of risk management including risk identification, prioritization, treatment, classification, and monitoring. The candidate should have configuration experience for implementing Archer GRC use cases like Third Party Risk Management, Operational Risk Management, Issues Management, Data Governance and Privacy, Controls Assurance, Cyber Incident and Breach Response etc. TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We believe individuals shouldn't be disadvantaged because of their background or identity, but instead should be considered based on their strengths and experience. We are passionate about this and hope you are too. TikTok is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to us at [email protected]

What are TikTok perks and benefits

Lactation facilities

Fertility

Unconscious bias training

Networking

Succession planning

Diversity recruiting

Diversity performance

Short term disability

Paid paternity

Paid maternity

Paid adoptive

About the company

TikTok

Industry: Technology: Consumer Internet

As the leading destination for short-form mobile video, our platform helps people around the world become a part of a global community. In a world that feels more divided than ever, we are here to inspire creativity and bring joy. We do this by embracing change, thriving in ambiguity, and always looking for solutions.

Why you should apply for a job with TikTok:

Employee well-being is supported via hybrid work, short-term counseling through our EAP and a premium subscription to Headspace.
We embrace diversity across all dimensions and provide employees with 9 employee resource groups globally, including our WOMEN ERG.
Comprehensive parental leave policy as well as fertility treatment through healthcare providers with a $20,000 lifetime maximum.