Global Security Training & Policy Communications Lead
New York, New York
Employer: TikTok
Industry: Security
Salary: Competitive
Job type: Full-Time
Responsibilities
TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.
Why Join Us
Creation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.
Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day.
To us, every challenge, no matter how difficult, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
Join us.
As a member of TikTok's Global Security Organization (GSO), reporting to the Global Head of Security Advocacy & Culture, you will play a critical role in continuing to advance TikTok's global security posture and culture of compliance. The Global Security Training & Policy Communications Lead is a senior role responsible for driving the design, development, implementation, reporting, and enhancement of comprehensive internal security training and policy education. This position ensures that all employees, contractors, and third-party vendors understand and adhere to the company's global security and compliance policies. The ideal candidate will possess deep expertise in compliance-driven training, policy communications, and change management, with a proven track record of leading enterprise-wide initiatives in a global environment.
Responsibilities
Strategic Program Development
- Global Strategy Implementation: Develop and manage a global strategy for security education, training, and policy communications aligned with security policies, risk frameworks, and compliance (ISO 27001, SOC2, PCI DSS).
- Vendor & Consultant Management: Oversee relationships with internal teams, vendors, and consultants to ensure seamless delivery of security tools and training that meet organizational standards.
- Needs Assessment & Reporting: Conduct regular security training assessments, track progress, and report effectiveness to senior management using KPIs and metrics.
- Risk-Based Training: Implement training based on risk assessments and compliance reviews to maintain alignment with global standards.
- Custom Programs: Design and improve compliance-driven training tailored to regions, departments, and roles, including e-learning, workshops, and webinars.
- Budget Management: Manage the security training budget to ensure cost-effective execution and resource allocation.
Security Policy Communications
- Communication Strategy: Lead the strategy for communicating security and compliance policies across the enterprise.
- Cross-Functional Collaboration: Partner with Global Security, Legal, Compliance, HR, IT, and Communications to help ensure clear understanding of policy updates globally, including localization.
- Tailored Messaging: Ensure communications are accessible and customized for diverse audiences.
Security Training Management
- Training Delivery: Ensure engaging, effective training content aligned with industry-standard principles, such as adult learning techniques.
- Continuous Improvement: Evaluate and improve training based on feedback, assessments, and compliance metrics.
- Regulatory Compliance: Ensure training programs meet legal and regulatory standards and are updated regularly.
Security Compliance & Risk Management
- Compliance Monitoring: Track adherence to global security policies, identify gaps, and recommend corrective actions.
- Culture Enhancement: Strengthen compliance culture through targeted training and communication.
- Subject Matter Expertise: Provide global expertise in security and compliance training, offering guidance to regional teams.
Leadership & Collaboration
- Team Leadership: Manage workflows within a Center of Excellence team, offering mentorship and performance management.
- Global Implementation: Collaborate with regional compliance officers and business leaders to ensure effective implementation of global training and policy strategies.
- Audit Liaison: Serve as the primary contact for external auditors and regulatory bodies regarding security training and communications.
- Cross-Collaboration: Work closely with Legal, Ethics, Communications, Privacy, and other teams to unify training programs and standardize processes for employees.
Qualifications
Minimum Qualifications
- Deep understanding of global compliance frameworks such as ISO 27001, NIST, and other relevant security standards.
- Proven track record of managing large-scale, global training and policy communications programs. Superb communication and presentation skills - able to distill complex concepts into persuasive, concise, and clear messages for any audience, from executive leadership to broader teams.
- Strong executive presence, including superb communication and presentation skills - persuasive, concise, simple, creative, and quick - in one-on-one, group, all-hands, or other settings.
- Skilled in navigating ambiguous environments and conveying complex technical or policy concepts to diverse audiences.
- Analytical proficiency, with experience assessing training needs and measuring program effectiveness. Proficiency in e-learning platforms and adaptability in using internal learning management systems (LMS) and other training tools.
- High degree of integrity and resourcefulness; ability to adapt and thrive in fast-paced, dynamic environments with shifting priorities.
- Willingness to travel as needed for global initiatives. Ability to work effectively across time zones and cultures, demonstrating cultural inclusiveness and adaptability.
Preferred Qualifications
- Bachelor's degree in Business, Communications, Journalism, Security, Privacy, Education, or Law
- 5 years of experience in compliance, security or privacy training, or policy communications, management, preferably in a global or multinational context.
TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.
TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at https://shorturl.at/cdpT2
TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.
Why Join Us
Creation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.
Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day.
To us, every challenge, no matter how difficult, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
Join us.
As a member of TikTok's Global Security Organization (GSO), reporting to the Global Head of Security Advocacy & Culture, you will play a critical role in continuing to advance TikTok's global security posture and culture of compliance. The Global Security Training & Policy Communications Lead is a senior role responsible for driving the design, development, implementation, reporting, and enhancement of comprehensive internal security training and policy education. This position ensures that all employees, contractors, and third-party vendors understand and adhere to the company's global security and compliance policies. The ideal candidate will possess deep expertise in compliance-driven training, policy communications, and change management, with a proven track record of leading enterprise-wide initiatives in a global environment.
Responsibilities
Strategic Program Development
- Global Strategy Implementation: Develop and manage a global strategy for security education, training, and policy communications aligned with security policies, risk frameworks, and compliance (ISO 27001, SOC2, PCI DSS).
- Vendor & Consultant Management: Oversee relationships with internal teams, vendors, and consultants to ensure seamless delivery of security tools and training that meet organizational standards.
- Needs Assessment & Reporting: Conduct regular security training assessments, track progress, and report effectiveness to senior management using KPIs and metrics.
- Risk-Based Training: Implement training based on risk assessments and compliance reviews to maintain alignment with global standards.
- Custom Programs: Design and improve compliance-driven training tailored to regions, departments, and roles, including e-learning, workshops, and webinars.
- Budget Management: Manage the security training budget to ensure cost-effective execution and resource allocation.
Security Policy Communications
- Communication Strategy: Lead the strategy for communicating security and compliance policies across the enterprise.
- Cross-Functional Collaboration: Partner with Global Security, Legal, Compliance, HR, IT, and Communications to help ensure clear understanding of policy updates globally, including localization.
- Tailored Messaging: Ensure communications are accessible and customized for diverse audiences.
Security Training Management
- Training Delivery: Ensure engaging, effective training content aligned with industry-standard principles, such as adult learning techniques.
- Continuous Improvement: Evaluate and improve training based on feedback, assessments, and compliance metrics.
- Regulatory Compliance: Ensure training programs meet legal and regulatory standards and are updated regularly.
Security Compliance & Risk Management
- Compliance Monitoring: Track adherence to global security policies, identify gaps, and recommend corrective actions.
- Culture Enhancement: Strengthen compliance culture through targeted training and communication.
- Subject Matter Expertise: Provide global expertise in security and compliance training, offering guidance to regional teams.
Leadership & Collaboration
- Team Leadership: Manage workflows within a Center of Excellence team, offering mentorship and performance management.
- Global Implementation: Collaborate with regional compliance officers and business leaders to ensure effective implementation of global training and policy strategies.
- Audit Liaison: Serve as the primary contact for external auditors and regulatory bodies regarding security training and communications.
- Cross-Collaboration: Work closely with Legal, Ethics, Communications, Privacy, and other teams to unify training programs and standardize processes for employees.
Qualifications
Minimum Qualifications
- Deep understanding of global compliance frameworks such as ISO 27001, NIST, and other relevant security standards.
- Proven track record of managing large-scale, global training and policy communications programs. Superb communication and presentation skills - able to distill complex concepts into persuasive, concise, and clear messages for any audience, from executive leadership to broader teams.
- Strong executive presence, including superb communication and presentation skills - persuasive, concise, simple, creative, and quick - in one-on-one, group, all-hands, or other settings.
- Skilled in navigating ambiguous environments and conveying complex technical or policy concepts to diverse audiences.
- Analytical proficiency, with experience assessing training needs and measuring program effectiveness. Proficiency in e-learning platforms and adaptability in using internal learning management systems (LMS) and other training tools.
- High degree of integrity and resourcefulness; ability to adapt and thrive in fast-paced, dynamic environments with shifting priorities.
- Willingness to travel as needed for global initiatives. Ability to work effectively across time zones and cultures, demonstrating cultural inclusiveness and adaptability.
Preferred Qualifications
- Bachelor's degree in Business, Communications, Journalism, Security, Privacy, Education, or Law
- 5 years of experience in compliance, security or privacy training, or policy communications, management, preferably in a global or multinational context.
TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.
TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at https://shorturl.at/cdpT2
Created: 2024-09-19
Reference: A123836
Country: United States
State: New York
City: New York
ZIP: 10036
Similar jobs:
-
Lead Communications Specialist
University of Rochester in Rochester, New York💸 $77216 - $115824 per year -
Deputy Director, Operations, Internal and External Communications Lead - Gotham Health
NYC Health Hospitals in New York, New York