TikTok
Security Strategy Senior Analyst - Governance Risk and Compliance
TikTok, Washington, District of Columbia, us, 20022
Security Strategy Senior Analyst - Governance Risk and Compliance
The mission of TikTok's Global Security Organization (GSO) is to build and earn trust by reducing risk and securing our businesses and products for over 1 billion users worldwide. The Security Strategy, Risk, and Resilience (SRR) team leads Governance, Risk and Compliance, partnering across the organization to manage security risks, mature operations, and build resilience. Responsibilities
Support the development and execution of the department‑wide cybersecurity strategy and a multi‑year maturity roadmap. Design and maintain performance measurement frameworks, including KPIs, KRIs, OKRs, and executive dashboards. Develop maturity models and tools to assess and monitor cybersecurity capabilities across teams. Provide regular reporting and briefings to leadership, summarizing progress, identifying gaps, and recommending adjustments. Conduct benchmarking and trend analysis against industry standards and peers. Partner with leadership to identify strategic gaps and support initiative prioritization, tracking, and documentation. Assist with strategic planning cycles, initiative management, and documentation that aligns security with business priorities. Qualifications
Minimum Qualifications:
Strong understanding of cybersecurity frameworks (e.g., NIST CSF, ISO 27001, MITRE ATT&CK) and ability to translate them into measurable objectives. Experience designing and operationalizing metrics or performance programs in a cross‑functional environment. Strong analytical and project‑management skills; ability to lead initiatives with multiple stakeholders. Ability to translate complex data and strategy into business‑relevant narratives. Willingness to work in the Washington DC or New York office three days per week and travel as needed. Preferred Qualifications:
Experience in cybersecurity GRC, metrics development, or strategic operations. Background in security strategy, cybersecurity operations, or consulting. Proficiency with data‑visualization tools such as Tableau, Power BI, or internal dashboards. Relevant certifications (e.g., CISSP, CRISC, CISM, PMP, or similar). About TikTok
TikTok is the leading destination for short‑form mobile video. Our mission is to inspire creativity and bring joy. We operate globally with headquarters in Los Angeles and Singapore and offices worldwide. Why Join Us
We foster an inclusive, diverse, and innovative environment where each team member can thrive, learn, and make an impact. Diversity & Inclusion
TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and perspectives. TikTok Accommodation
TikTok provides reasonable accommodations in recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs, or other protected reasons. For assistance, visit https://tinyurl.com/RA-request Job Information
Compensation (Washington, DC):
$106,920 – $176,400 annually, plus potential bonuses, stock units, and a comprehensive benefits package including medical, dental, vision, 401(k) match, paid parental leave, and paid time off.
#J-18808-Ljbffr
The mission of TikTok's Global Security Organization (GSO) is to build and earn trust by reducing risk and securing our businesses and products for over 1 billion users worldwide. The Security Strategy, Risk, and Resilience (SRR) team leads Governance, Risk and Compliance, partnering across the organization to manage security risks, mature operations, and build resilience. Responsibilities
Support the development and execution of the department‑wide cybersecurity strategy and a multi‑year maturity roadmap. Design and maintain performance measurement frameworks, including KPIs, KRIs, OKRs, and executive dashboards. Develop maturity models and tools to assess and monitor cybersecurity capabilities across teams. Provide regular reporting and briefings to leadership, summarizing progress, identifying gaps, and recommending adjustments. Conduct benchmarking and trend analysis against industry standards and peers. Partner with leadership to identify strategic gaps and support initiative prioritization, tracking, and documentation. Assist with strategic planning cycles, initiative management, and documentation that aligns security with business priorities. Qualifications
Minimum Qualifications:
Strong understanding of cybersecurity frameworks (e.g., NIST CSF, ISO 27001, MITRE ATT&CK) and ability to translate them into measurable objectives. Experience designing and operationalizing metrics or performance programs in a cross‑functional environment. Strong analytical and project‑management skills; ability to lead initiatives with multiple stakeholders. Ability to translate complex data and strategy into business‑relevant narratives. Willingness to work in the Washington DC or New York office three days per week and travel as needed. Preferred Qualifications:
Experience in cybersecurity GRC, metrics development, or strategic operations. Background in security strategy, cybersecurity operations, or consulting. Proficiency with data‑visualization tools such as Tableau, Power BI, or internal dashboards. Relevant certifications (e.g., CISSP, CRISC, CISM, PMP, or similar). About TikTok
TikTok is the leading destination for short‑form mobile video. Our mission is to inspire creativity and bring joy. We operate globally with headquarters in Los Angeles and Singapore and offices worldwide. Why Join Us
We foster an inclusive, diverse, and innovative environment where each team member can thrive, learn, and make an impact. Diversity & Inclusion
TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and perspectives. TikTok Accommodation
TikTok provides reasonable accommodations in recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs, or other protected reasons. For assistance, visit https://tinyurl.com/RA-request Job Information
Compensation (Washington, DC):
$106,920 – $176,400 annually, plus potential bonuses, stock units, and a comprehensive benefits package including medical, dental, vision, 401(k) match, paid parental leave, and paid time off.
#J-18808-Ljbffr