logo
about
careers
FAQs
privacy policyterms & conditionsfor employers
My ProfileMy MessagesMy NetworkMy SettingsGroupsEventsMy PostsLog Out

Third Party Risk Management Senior Specialist (M&A) (Global) - Washington DC, LA, NYC or Mountain View

TikTok

Washington, DC

Why you should apply for a job with TikTok:

  • Employee well-being is supported via hybrid work, short-term counseling through our EAP and a premium subscription to Headspace.

  • We embrace diversity across all dimensions and provide employees with 9 employee resource groups globally, including our WOMEN ERG.

  • Comprehensive parental leave policy as well as fertility treatment through healthcare providers with a $20,000 lifetime maximum.

Get jobs straight to your inbox

Anonymous company reviews, virtual recruiting events, and a supportive community for women when you sign up.

#JSFML

Position summary

TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok has global offices, including Los Angeles, New York, London, Paris, Berlin, Dubai, Mumbai, Singapore, Jakarta, Seoul, and Tokyo. The Global Security Organization provides industry leading security and privacy services to ByteDance globally. Our organization uses four principles that guide our strategic and tactical operations. First, we champion trust and transparency, leading the charge in organizational transparency and execution of security and privacy capabilities that drive customer trust. Second, we are a business catalyst and enabler, embodying the DNA of technical innovation. Third, we drive risk informed and empowered decision making, giving our business leaders the information needed to make key decisions. Finally, we proactively identify and reduce risk while enabling innovative product development – to consistently build sustainable world-class security capabilities. As a direct report to the Global Third Party Risk Management Lead, you will have the unique opportunity to build and implement TikTok’s M&A and strategic investment risk assessment program within the Global Security Organization. The Third Party Risk Management Specialist will be a part of a team that proactively manages risks introduced by third parties, business partners, and strategic investments. In this role, you will have the ability to participate in the build-out of the Third Party Risk Management (TPRM) program that has end-to-end strategic, operational, and functional responsibilities as it is accountable to identify, assess, mitigate, monitor, and report on third-party-related risks while enabling the business to meet its objectives across the enterprise. Working cross- functionally with key business stakeholders including IT Security, Global Procurement, Legal, and Privacy, the team will establish and manage the end-to-end third party lifecycle including an M&A information security risk assessment process. Responsibilities will include conducting agile assessments and educating business stakeholders on risk outputs to drive business decisions aligned with organization risk tolerance. Responsibilities: M&A and Strategic Investments: - Develop and maintain a M&A information security risk assessment program that includes a comprehensive reporting process with pre-close and post-close risk mitigation recommendations - Conduct comprehensive due diligence and identify information security risks on potential acquisitions while coordinating with cross-functional teams - Develop and publish an executive and committee reporting mechanism to clearly articulate due diligence and risk assessment results to drive business decisions - Contribute to the development of M&A training, awareness, and policy development as the integrated risk liaison Third Party Risk Management: - Facilitate third party risk lifecycle including conducting assessments, reporting results, developing findings and recommended remediation plan while maintaining excellent customer service - Help develop business-driven risk profiles of third parties detailing service relationships to best assess the risks and impact of the relationship - Monitor and assess third party performance to ensure compliance with the TPRM program, regulatory requirements, and service level agreements - Assist in developing innovative solutions to help evaluate complex business, technology, and risks issues in a fast paced enviroment - Assist in the continued deployment of the TPRM module within the ByteDance GRC tool and support the development of functional and business requirements - Assist in developing and implementing third party security risk management training programs to educate employees Required: - Bachelor’s degree in risk or equivalent privacy, security, compliance, project management, analytics, or like discipline from an accredited college/university or measurable knowledge/experience from proven industry, military, defense, or government operations. - 3+ years of M&A and third party risk management experience in a relevant industry including technology, entertainment, etc. - A highly motivated individual, with strong communication and relationship-building skills, and demonstrate a record of ongoing accomplishment and commitment to excellence - Experience in risk management principles including risk identification, prioritization, treatment, classification, and monitoring - Experience executing control evaluation and management processes in a fast paced, technical environment - Experience working hands-on with cross-functional teams including legal, procurement, information security, business continuity, privacy, and IT engineering while assessing processes, risks, and implementing controls to develop a culture of risk-informed decision making - Knowledge of controls frameworks and industry standard frameworks (FAIR, COBIT, NIST CSF, SOC, ISO, etc.) - Industry relevant certification (CISA, CISSP, Etc.) TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We believe individuals shouldn't be disadvantaged because of their background or identity, but instead should be considered based on their strengths and experience. We are passionate about this and hope you are too. TikTok is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to us at [email protected]

What are TikTok perks and benefits

Lactation facilities

Fertility

Unconscious bias training

Networking

Succession planning

Diversity recruiting

Diversity performance

Short term disability

Paid paternity

Paid maternity

Paid adoptive

About the company

TikTok

Industry: Technology: Consumer Internet

As the leading destination for short-form mobile video, our platform helps people around the world become a part of a global community. In a world that feels more divided than ever, we are here to inspire creativity and bring joy. We do this by embracing change, thriving in ambiguity, and always looking for solutions.

Why you should apply for a job with TikTok:

  • Employee well-being is supported via hybrid work, short-term counseling through our EAP and a premium subscription to Headspace.

  • We embrace diversity across all dimensions and provide employees with 9 employee resource groups globally, including our WOMEN ERG.

  • Comprehensive parental leave policy as well as fertility treatment through healthcare providers with a $20,000 lifetime maximum.

icon
© 2022 Fairygodboss. All rights reserved.