Data Protection and Sovereignty Technical Program Manager, Global Security

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

Responsibilities

About TikTok
TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.

Why Join Us
Creation is the core of TikTok's purpose. Our products are built to help imaginations thrive. This is doubly true of the teams that make our innovations possible. Together, we inspire creativity and enrich life - a mission we aim towards achieving every day. To us, every challenge, no matter how ambiguous, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always. At TikTok, we create together and grow together. That's how we drive impact-for ourselves, our company, and the users we serve. Join us.

The mission of TikTok's Global Security Organization is to build and earn trust by reducing risk and securing our businesses and products. Also known as "GSO", this team is the foundation of our efforts to keep TikTok safe, secure, and operating at scale for over 1 billion people around the world. We work to ensure that the TikTok platform is safe and secure, that our users' experience and their data remains safe from external or internal threats, and that we comply with global regulations wherever TikTok operates.

Trust is one of TikTok's biggest initiatives, and security is integral to our success. In whatever ways users interact with us - whether they're watching videos on their For You page, interacting with a Live video, or buying products on TikTok Shop - GSO protects their data and privacy, so they can have a secure and trustworthy experience.

TikTok is seeking a highly adaptable and motivated Program Manager for our Data Protection and Sovereignty team spanning numerous cybersecurity disciplines. You will play a crucial role in ensuring the privacy and security of our regional data by collaborating with third party security providers, while leveraging the efficiencies offered by our internal security functions.
You will collaborate closely with various teams, including Security, Privacy, and Engineering, to help ensure the operational sustainability of our data security measures. You will also engage regularly with third party security providers to demonstrate transparency and achieve external assurance. This role reports to the Data Sovereignty Lead within GSO's Data Protection team.

Responsibilities
- Provide technical strategy and management for Data Sovereignty programs regionally, which include cross-functional security projects across multiple organizations and external providers, to implement programs that meet the organization's Information Security standards, the assurance objectives of third parties, and regional regulatory requirements
- Deliver operational security services and solutions which include but are not limited to: Program Management, Vendor Management, Secure Code Review, Security Monitoring, Network Monitoring, Vulnerability Management, Incident Response, and other traditional security disciplines
- Create executive leadership communications (provide appropriate updates/recommendations regarding organization's regional security posture) and reporting (prepare and present high-level security reports that clearly and effectively communicate the organization's regional security status, significant risks/issues, and external implications of security metrics)
- Manage stakeholders and work streams across disciplines and diverse regions/work cultures (present complex security concepts and situations to both technical and non-technical stakeholders in a clear and comprehensible manner)
- Lead project planning (create and maintain project plans and roadmaps in accordance with internal and external priorities, define delivery methodologies and drive project execution) and tracking (manage various collaboration tools and dashboards to ensure accurate and timely status updates on project execution)
- Assemble and enable integrated teams with the appropriate skills for successful execution and delivery (including subject matter experts, project sponsors, and operational resources across multiple internal and external teams)

Qualifications

Minimum Qualifications
- Experience driving technical cybersecurity programs from scoping to delivery at scale
- Strong understanding of cybersecurity managed services, secure code review and vulnerability management, access management, network monitoring, incident response and compliance frameworks (e.g., NIST, ISO, PCI)
- Strong analytical, organizational, and interpersonal skills, combined with excellent verbal and written communication skills
- Significant experience engaging with third-parties or external stakeholders, such as client-facing support or management of contractor relationships
- Experience operating autonomously and leading across multiple teams, with stakeholders in different disciplines across time zones

Preferred Qualifications
- Bachelors' Degree or industry equivalent work experience
- 5 years experience working in cybersecurity or privacy program management
- Relevant certifications: CISSP, CISM, PMP
- Understanding of privacy risk, data protection, or a related field, with a proven track record of executing privacy programs
- Understanding of global data protection laws and regulations, including GDPR, CCPA, and industry-specific regulations.
- Ability to work collaboratively in a team environment and to engage with stakeholders at all levels of the organization.
- Demonstrated ability to work effectively in environments of ambiguity and constant change.

TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.