TikTok Security Compliance
Directed security and audit programs across multiple engineering organizations to meet US government compliance requirements, enabling Oracle's selection as TikTok's secure cloud provider.
Context
In 2020, geopolitical pressure and US government scrutiny meant TikTok needed a secure cloud provider that could meet strict compliance requirements. Oracle was positioned to fill that role. The cloud infrastructure needed to pass rigorous government security audits on an aggressive timeline.
My Role
I directed security and audit programs across multiple engineering organizations at Oracle, coordinating the effort to ensure OCI met the compliance standards required for this partnership.
Challenge
Meet strict US government compliance requirements on an aggressive timeline. Coordinated across security engineering, audit, legal, and compliance teams while defining security product requirements and ensuring OCI met government standards.
Approach
- Coordinated security engineering, audit, legal, and compliance teams across multiple organizations
- Defined security product requirements aligned with government standards
- Ensured OCI’s cloud offerings met the highest security and compliance benchmarks
- Managed stakeholders both upstream and downstream, keeping the program on track
Outcome
Oracle was selected as TikTok’s secure cloud provider, enabling a $20B partnership. Security compliance became a product differentiator.
Key Takeaway
Security compliance, when treated as a product discipline rather than an afterthought, can be a decisive competitive advantage in enterprise and government markets.