Security Investigator
Zoom (Posted 19 Feb 22)
The Insider Risk Consultant will be a subject matter lead for Zoom’s Insider Risk Mitigation Program focused on the APAC region. The role requires a security and risk professional with a strong background in counterintelligence, insider investigations, global threats (e.g., criminal organisations, competitive intelligence specialists, nation states) and the ability to navigate across diverse cultural and political environments. The Security Investigator must also have exemplary interpersonal skills. You must be able to proactively build relationships across Zoom and establish trust and rapport with executives, the broader employee base, and subjects of investigations. Ultimately, the position requires personifying Zoom’s value of care while investigating sensitive matters. Responsibilities
As a member of a small and global team of investigators, serve as the representative for people-centric challenges within the Insider Risk Mitigation Program supporting the entire employee lifecycle from recruiting and onboarding to training, outreach, and off-boarding.
Work proactively on risk mitigation measures supporting the employee lifecycle from recruiting and onboarding to training, outreach, and offboarding.
Manage and conduct investigations end-to-end, including intake meetings, background research, investigative interviews, and debrief meetings with company leadership and stakeholders.
Partner with cross functional teams to conduct prompt, thorough, and fair investigations providing clear, concise, and accurate reporting for administrative or legal partners.
Build meaningful relationships and mutually beneficial collaborations.
Work closely with the Security, Trust & Safety, and Compliance teams to investigate and analyze potential incidents, determine legal and regulatory responsibilities, and advise on necessary and recommended responses.
Serve as a subject matter expert in the areas of insider risk, risk management, and investigations.
Regularly meet with internal teams (e.g., Security, Legal, Compliance, HR) to understand strategies, roadmap, and initiatives, and advise on the risk management program.
Provide program updates to senior management and stakeholders.
Maintain an understanding of technical controls and monitoring frameworks tailored to internal risk management.
Respond timely to inquiries from colleagues with sound, succinct, and actionable support.
Requirements
Fluent in Mandarin.
8+ years of direct experience in investigations, counterintelligence, and insider risk; preferably with a combination of private, government, and law enforcement.
Bachelor’s degree relevant field
Relevant professional certifications such as CPA/CA, CIA, CFE, CISSP, PDPA or similar.
Expertise or education in behavioral risk management, psychology, legal, and related frameworks.
Experience conducting investigations in an organization providing audit, finance, legal, HR or law enforcement services.
Experience working with data analysis and e-discovery tools and applications.
Experience working internationally.
Experience and knowledge of local and regional laws and regulations regarding data privacy.
Extensive experience in public speaking, interviewing, or serving in a forward-facing public service role.
Strong communication skills, both written and verbal, including the ability to communicate effectively across cross-functional teams, diverse nationalities, and backgrounds and build collaboration, partnerships, and consensus among stakeholders.
Passion to work in a collaborative team environment with an attitude to deliver happiness.
Ability to remain respectful and diplomatic in the face of difficult and uncomfortable situations surrounding an investigation.
Sense of humor, excellent interpersonal skills, business judgment, strategic thinking, superior work ethic, flexibility and the ability to work independently.
Growth mindset: every new challenge is an opportunity to learn and grow.
Tech sector related internal control and risk management experience is a plus
Last updated