Security and Compliance Engineering Program Manager
Apply NowCompany: TikTok
Location: Mountain View, CA 94040
Description:
Responsibilities
About the team
You will join a team within our Tech and Product team that plays a pivotal role in enabling our organization to adhere to regulatory, compliance and security requirements, building and maintaining robust compliance practices, and facilitating change effectively.
About the role
As a Technical Security and Compliance Engineering Program Manager, you will be the technical compliance partner who will drive implementation of compliance requirements in relation to strategic planning, new feature release and technology architecture modifications for cross-functional engineering teams within Technology and Product.
Responsibilities:
- Clarify ambiguous problems, collaborate with cross-functional teams to develop solutions, and mitigate risks with strong technical and business judgment.
- Translate strategy into clear requirements with a defined timeline.
- Resolve conflicts, build efficient processes, and drive execution for TikTok Monetization initiatives.
- Continuously improve organizational efficiency and support regulatory, security, and compliance initiatives.
- Communicate effectively with internal and external stakeholders and ensure alignment with compliance peers.
- Develop an understanding of security/compliance requirements and TikTok policies, supporting the creation and maturity of compliance guidelines.
- Deliver training, identify compliance gaps, and propose risk-reducing strategies.
- Maintain compliance monitoring dashboards and assist with regulatory and audit inquiries.
Technical Expertise and Program Support:
- Provide program support across cross-functional areas, including Engineering, Data Science, and Compliance teams.
- Gain expertise in back-end data processing and support compliance risk assessments.
- Translate compliance requirements into actionable internal requirements and partner with Engineering for security controls.
- Demonstrate strong project management skills for complex initiatives.
Security and Compliance Operations:
- Investigate compliance/security events, working with engineering teams to address issues and enhance cross-functional collaboration.
- Act as a gatekeeper for maintaining compliance within engineering functions.
In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.
Qualifications
Minimum Qualifications
- Fast learner, detail-oriented, and comfortable in ambiguous situations.
- Bachelor's degree in Information Security, Computer Science, or related field (or equivalent experience).
- 3-5 years in security assurance/compliance, data governance, and regulatory frameworks.
- Strong understanding of industry compliance standards, including GDPR.
- Experience with risk reporting and executive dashboards.
- Excellent communication and analytical skills.
Preferred Qualifications
- Certifications such as GCIH, CISSP, or CCEP are a plus.
- Proficient in G-Suite.
- Strong work ethic, passion for privacy laws, and familiarity with short video platforms.
- Resilience to manage daily tasks and emotional demands in a fast-paced environment.
Candidates for this position must be legally authorized to work in the United States. This position is not eligible for visa sponsorship or support.
About the team
You will join a team within our Tech and Product team that plays a pivotal role in enabling our organization to adhere to regulatory, compliance and security requirements, building and maintaining robust compliance practices, and facilitating change effectively.
About the role
As a Technical Security and Compliance Engineering Program Manager, you will be the technical compliance partner who will drive implementation of compliance requirements in relation to strategic planning, new feature release and technology architecture modifications for cross-functional engineering teams within Technology and Product.
Responsibilities:
- Clarify ambiguous problems, collaborate with cross-functional teams to develop solutions, and mitigate risks with strong technical and business judgment.
- Translate strategy into clear requirements with a defined timeline.
- Resolve conflicts, build efficient processes, and drive execution for TikTok Monetization initiatives.
- Continuously improve organizational efficiency and support regulatory, security, and compliance initiatives.
- Communicate effectively with internal and external stakeholders and ensure alignment with compliance peers.
- Develop an understanding of security/compliance requirements and TikTok policies, supporting the creation and maturity of compliance guidelines.
- Deliver training, identify compliance gaps, and propose risk-reducing strategies.
- Maintain compliance monitoring dashboards and assist with regulatory and audit inquiries.
Technical Expertise and Program Support:
- Provide program support across cross-functional areas, including Engineering, Data Science, and Compliance teams.
- Gain expertise in back-end data processing and support compliance risk assessments.
- Translate compliance requirements into actionable internal requirements and partner with Engineering for security controls.
- Demonstrate strong project management skills for complex initiatives.
Security and Compliance Operations:
- Investigate compliance/security events, working with engineering teams to address issues and enhance cross-functional collaboration.
- Act as a gatekeeper for maintaining compliance within engineering functions.
In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.
Qualifications
Minimum Qualifications
- Fast learner, detail-oriented, and comfortable in ambiguous situations.
- Bachelor's degree in Information Security, Computer Science, or related field (or equivalent experience).
- 3-5 years in security assurance/compliance, data governance, and regulatory frameworks.
- Strong understanding of industry compliance standards, including GDPR.
- Experience with risk reporting and executive dashboards.
- Excellent communication and analytical skills.
Preferred Qualifications
- Certifications such as GCIH, CISSP, or CCEP are a plus.
- Proficient in G-Suite.
- Strong work ethic, passion for privacy laws, and familiarity with short video platforms.
- Resilience to manage daily tasks and emotional demands in a fast-paced environment.
Candidates for this position must be legally authorized to work in the United States. This position is not eligible for visa sponsorship or support.