×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security IT Consultant

Third Party Risk Management Analyst - USDS

Job in New York, New York County, New York, 10261, USA
Listing for: TikTok
Part Time position
Listed on 2025-12-14
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security, IT Consultant
Job Description & How to Apply Below
Location: New York

Third Party Risk Management Analyst - USDS

Responsibilities

The USDS Security - Risk & Compliance team is responsible for managing USDS security compliance in accordance with US compliance requirements and objectives, and providing industry leading governance, risk, and compliance services. The core service offerings include:
Compliance & Security Risk Management, Controls & Compliance Framework, Security Compliance Policies, Charters, & Protocols, Vendor Program & Third-Party Risk Management, Governance, Risk, & Compliance (GRC) Platform, and Security & Compliance Behavior & Culture.

In order to enhance collaboration and cross-functional partnerships, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.

As a Third Party Risk Management (TPRM) analyst, you will be a subject matter expert and liaison between USDS and the lines of business as it pertains to vendor compliance screening, issues and vulnerability management, and cross-functional security and privacy control assurance. You will be responsible for owning and managing daily operations of assigned vendor compliance assessment coordination, technical writing, and USDS Vendor Lifecycle management.

Within this role, you will closely coordinate with USDS Procurement and Legal teams to ensure USDS Vendor Program and Procurement Policies requirements are implemented, enforced and communicated to business owners, program managers and other applicable internal teams.

  • Coordinating between USDS TPRM, Procurement, and Legal operations about vendor lifecycle management, contract clauses verification and compliance assessment procedures
  • Technical writing and communication between cross-functional teams and Non-USDS lines of business
  • Validating vendor compliance screening assessments
  • Reporting vendor security risk assessments for authorized and rejected vendors
  • Coordinating between USDS Risk Management, Global Security Organization, and other applicable internal teams on unresolved findings and vulnerability management
  • Enhancing USDS TPRM standard operating procedure as it pertains to emerging threats and USDS Vendor Program policy requirements
  • Validating security standard controls and audits as applicable to the overall USDS TPRM program and process
  • Managing assessment life cycles and dashboard reporting
  • Coordinating and executing assessments for site visit assessments (physical and remote) and reporting related to Tik Tok USDS data centers and Content Delivery Networks (CDNs)
Qualifications

Minimum Qualifications

  • Bachelor’s degree in risk management or equivalent privacy, security, compliance, project management, or related discipline from an accredited college
  • 3+ years of third party risk management or related security experience
  • Fundamental understanding of Third Party Risk Management and direct experience partnering with Procurement and Legal functions
  • Technical writing and verbal communication skills that enable executive reporting on Third Party Risk metrics
  • Findings and vulnerability management experience related to the resolution and/or remediation of web vulnerabilities, bugs, and cybersecurity vulnerabilities
  • Critical thinking and analytical decision making skills to forecast issues, events and/or risks pertaining to TPRM

Preferred Qualifications

  • Supply Chain risk management experience related to software and hardware solutions/tooling to include but not limited to Bill of Materials (BOM) analysis
  • Contract clause verification pertaining to security, privacy and business resilience controls
  • Experience implementing vendor lifecycle procedures including Onboarding, Ongoing Monitoring and Offboarding requirements
  • Experience with TPRM incident event management, policy development, enhancement and awareness
  • Experience with OFAC Sanctions and foreign ownership compliance assessments
About USDS

Tik Tok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security (“USDS”) is a subsidiary of Tik Tok…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search