Third-Party Security Specialist

We are creating an operationally effective and highly efficient "service of common concern" for Security Governance, Risk, and Compliance (GRC) needs, ensuring Security continues to meet global regulatory requirements and to manage risk.We are seeking experienced security talent to help enable and safeguard Meta's products and services which have a truly global scale. Security GRC is simultaneously responsible for, (a) enabling the business to achieve its goals at scale and pace; (b) safeguarding the business against real world security risks; and (c) addressing the regulatory scrutiny the business faces. Our goal is to make Meta the premier place to work for governance, risk, compliance and security professionals. Third Party Security Risk Management team is dedicated to providing innovative, technical solutions that prioritize business user experience. By simplifying and consolidating risk management processes and tools, we're making it easier for our stakeholders to navigate complex risks and make informed decisions.

• Responsibilities:
• Collaborate with team members and stakeholders to understand or identify defined work problems and program goals, obtain prioritized deliverables, and discuss program impact.
• Prioritize program goals, understand and translate other stakeholders' needs into program goals and prioritized deliverables in partnership with the team, and contribute to decisions on prioritizing goals and deliverables.
• Help define the scope of projects, execute project plans for supported program(s).
• Review key metrics pertaining to a program, monitor potential metric deviations, and define corrective actions for critical deviations.
• Identify opportunities for increased maturity across the program factoring in emerging regulations and proactive detection of risks.
• Identify, communicate, and collaborate with relevant stakeholders within one or more teams to drive impact and work toward mutual goals.
• Establishment of learnings, best practices, standardized frameworks and tools across programs and projects.
• Preparation of the detailed project plans along with the "services of common concern."
• Establishment of communication modes and cadences with various stakeholders, contributing to planned and ad-hoc meetings with various stakeholders to ensure project milestones are on track and to communicate latest status to them, and sharing of meeting minutes and regular updates with various stakeholders.
• Identification of stakeholders and their roles, keeping them updated on the progress of the project, addressing their concerns, seeking and implementing their feedback.
• Identification of risks and detailing of a mitigation plan to ensure that the project stays on track, or is brought back on track in the event of delays or blockers.
• Support business travel on an as needed basis (up to 10%).

• BS or BA degree with 3+ years of experience in information security, cybersecurity, transparency reporting, integrity, and/or technology risk
• Communication experience, along with facilitation, analytical, leadership, delegation, and presentation skills.
• Experience of execution in security and delivering tangible results.
• Experience in effectively defending ideas and solutions.
• Problem solving and trouble-shooting experience.
• Experience collaborating with multiple technical and non-technical teams to deliver successful programs / projects.
• Foundation program management skills such as planning, organizing, pre-empting risks/blockers, communicating with stakeholders, to deliver successful programs / projects.
• Advanced degree and/or certification.