Security Strategy, Risk, and Resilience (SRR) Senior Third Party Security Monitoring Specialist
TikTok
Office
Washington D.C., District of Columbia, United States
Full Time
The mission of TikTok's Global Security Organization is to build and earn trust by reducing risk and securing our businesses and products. Also known as "GSO", this team is the foundation of our efforts to keep TikTok safe, secure, and operating at scale for over 1 billion people around the world. We work to ensure that the TikTok platform is safe and secure, that our users' experience and their data remains safe from external or internal threats, and that we comply with global regulations wherever TikTok operates.
Trust is one of TikTok's biggest initiatives, and security is integral to our success. In whatever ways users interact with us — whether they're watching videos on their For You page, interacting with a Live video, or buying products on TikTok Shop — GSO protects their data and privacy, so they can have a secure and trustworthy experience.
The Security Strategy, Risk, and Resilience team is responsible for working closely with cross-functional partners to manage security risks to ensure we meet all industry cybersecurity compliance standards and government regulations through developing governing policies, implementing the security control framework, conducting security risk and control assessments, and staying up-to-date on global compliance initiatives.
This role is for a strategic and hands-on cybersecurity practitioner who will be a key player in securing TikTok’s vendor integrations and technical connections. You’ll move beyond procedural reviews to directly validate, monitor, and secure how third parties connect to our platforms and data. Your work will ensure integrations are safe, resilient, and do not expand TikTok’s attack surface.
If you are a curious, technically strong, and collaborative security professional who thrives at the intersection of architecture and resilience, this role is for you. We are looking for someone who can balance deep technical expertise with strategic foresight, driving impact across engineering, procurement, and security teams.
As the Third Party Security Monitoring Specialist, you will be responsible for:
- Secure Integration Design: Review, validate, and architect secure technical integrations with third-party vendors, including APIs, network tunnels, and cloud configurations
- Continuous Monitoring: Implement and integrate automated monitoring for network logs and configurations
- Resilience Validation: Ensure vendor integrations are redundant, recoverable, and aligned with TikTok’s business continuity and cybersecurity resilience standards
- Risk Mitigation at Scale: Identify and remediate integration risks early in the vendor lifecycle (pre-onboarding, post-onboarding, and during ongoing operations)
- Collaboration & Enablement: Work closely with Procurement, Legal, IT, and business units to embed security into the procurement process and ensure secure third-party operations
Trust is one of TikTok's biggest initiatives, and security is integral to our success. In whatever ways users interact with us — whether they're watching videos on their For You page, interacting with a Live video, or buying products on TikTok Shop — GSO protects their data and privacy, so they can have a secure and trustworthy experience.
The Security Strategy, Risk, and Resilience team is responsible for working closely with cross-functional partners to manage security risks to ensure we meet all industry cybersecurity compliance standards and government regulations through developing governing policies, implementing the security control framework, conducting security risk and control assessments, and staying up-to-date on global compliance initiatives.
This role is for a strategic and hands-on cybersecurity practitioner who will be a key player in securing TikTok’s vendor integrations and technical connections. You’ll move beyond procedural reviews to directly validate, monitor, and secure how third parties connect to our platforms and data. Your work will ensure integrations are safe, resilient, and do not expand TikTok’s attack surface.
If you are a curious, technically strong, and collaborative security professional who thrives at the intersection of architecture and resilience, this role is for you. We are looking for someone who can balance deep technical expertise with strategic foresight, driving impact across engineering, procurement, and security teams.
As the Third Party Security Monitoring Specialist, you will be responsible for:
- Secure Integration Design: Review, validate, and architect secure technical integrations with third-party vendors, including APIs, network tunnels, and cloud configurations
- Continuous Monitoring: Implement and integrate automated monitoring for network logs and configurations
- Resilience Validation: Ensure vendor integrations are redundant, recoverable, and aligned with TikTok’s business continuity and cybersecurity resilience standards
- Risk Mitigation at Scale: Identify and remediate integration risks early in the vendor lifecycle (pre-onboarding, post-onboarding, and during ongoing operations)
- Collaboration & Enablement: Work closely with Procurement, Legal, IT, and business units to embed security into the procurement process and ensure secure third-party operations
Security Strategy, Risk, and Resilience (SRR) Senior Third Party Security Monitoring Specialist
Office
Washington D.C., District of Columbia, United States
Full Time
September 11, 2025