Resiliency Integration Specialist - USDS

TikTok

  • Los Angeles, CA
  • Permanent
  • Full-time
  • 1 month ago
The Resiliency Operations Center (ROC) is a best-in-class operational model that unifies Incident Response, Crisis Management, Business Continuity, Disaster Recovery, and Preparedness & Strategy (EOPS). This team operates within TikTok's U.S. Data Security (USDS) organization and is dedicated to safeguarding U.S. user data while ensuring organizational resilience.The Enterprise Organizational Preparedness & Strategy (EOPS) team is the strategic and integration arm of the ROC. It focuses on proactive resilience control development, program oversight, leadership reporting, and capability maturation across USDS. EOPS also leads the implementation and execution of enterprise resilience frameworks across the USDS Enterprise. Our purpose is to strengthen organizational readiness, drive strategic alignment, and enable enterprise resilience across TikTok USDS through intentional, structured, and scalable initiatives.In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.About the Role:
You'll act as the connective tissue between technical and strategic partners by coordinating assessments, driving closure of risk and capability gaps, developing and delivering various forms of training, and supporting the development/integration of the USDS Enterprise Resilience Framework. You'll develop processes connecting the Resiliency Operations Center (ROC) to other business stakeholders to include but not limited to: intelligence reporting, investigations, IT forensics, risks, trends, internal capabilities, Incident Management, Crisis Management and business continuity status reporting, etc.The USDS Resiliency Integration Specialist is a critical team member supporting the execution of USDS resilience and preparedness objectives. In this role, you'll act as the connective tissue between technical and strategic partners, collaborating across business units, security & privacy teams, engineering, risk & compliance, and other stakeholders. Your goal will be to align day-to-day operations with enterprise resilience objectives and controls.This position requires strong project management skills to drive complex initiatives between engineering teams and business lines. You'll leverage and create methodologies to connect processes with the intent of tracking data for trend and risk analysis, conduct analyses to identify data-driven high-priority operational gaps, and support remediation management of compliance violations, enterprise incidents, and control violations across the US Data Security organization.Responsibilities
- Collaborate with, influence, and build trusted relationships with cross-functional partners and business leaders to build program awareness/traction and drive impact through the Resiliency Operations Center.
- Serve as a cross-functional integrator and resilience POC between EOPS and business units, security & privacy teams, legal, engineering, trust & safety, and product functions.
- Lead and coordinate Resilience Maturity Assessments (RMAs) for business and technical teams, aligned with the USDS Enterprise Resilience Framework.
- Develop, maintain, and continuously enhance program documentation, including compliance control libraries, company resilience metrics, gap remediation plans, and training and cross-functional engagement plans.
- Track and analyze resilience metrics, trends, and operational data to surface insights for executive dashboards and reporting.
- Partner with Risk & Compliance and relevant teams on risk remediation, internal audit coordination, and resilience-related policy alignment, specifically managing Remediation Projects stemming from incidents.
- Support preparedness trainings, workshops, and exercise initiatives by helping plan, facilitate, and analyze outcomes from cross-functional program engagements (e.g., Tabletop Exercises, Cross-functional Workshops, Training Development).
- Assist in operationalizing continuous improvement by embedding insights from After-Action Reviews (AARs) and Continuous Improvement Tracking into repeatable workflows and Continous Improvement Projects.Qualifications:Minimum Qualifications
- Bachelor's degree or equivalent work experience in Emergency Management, Risk Management, Cybersecurity Policy & Compliance, Business Management, Data Science, Strategic Planning, Information Systems, or a related field, or measurable knowledge/experience from proven industry, military, defense, consulting, or government operations.
- 4+ years of relevant experience in program management, operational resilience, risk operations, assurance, risk & compliance, training development & delivery, or cross-functional integration in complex and/or regulated environments.
- Strong strategic thinking and problem-solving skills with the ability to translate ambiguity into action.
- Excellent project management skills with experience working on enterprise-level initiatives across globally distributed teams.
- Demonstrated experience facilitating collaboration between technical and non-technical teams.
- Strong written and verbal communication skills with an ability to influence and engage leadership-level stakeholders.
- Experience building or supporting cross-functional programs involving incident response, business continuity, disaster recovery, risk management, or compliance as well as familiarity with the concepts of incident response, crisis management, business continuity, preparedness, and/or has technical expertise working within a technology company or consulting background.Preferred Qualifications:
- CBCP, MBCI, ISO 22301 Lead Implementer or Auditor, ISO 27001 Lead Implementor or Auditor, CISA, PMP, or equivalent
- Familiarity with ISMS, BCMS, or Operational Risk frameworks
- Experience designing and delivering training, to include but not limited to Computer Based Training, workshops, Tabletop Exercises, Functional Exercises, etc.
- Familiarity with the concepts of incident response, crisis management, business continuity, preparedness, and/or technical expertise.

TikTok