Data Compliance & Privacy Analyst - USDS

$98,800 - $146,400/Yr

Tiktok - Mountain View, CA

posted about 2 months ago

Full-time - Entry Level
Mountain View, CA
Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services

About the position

TikTok is the leading destination for short-form mobile video, and our mission is to inspire creativity and bring joy. The U.S. Data Security (USDS) division was established to enhance focus and governance on data protection policies and content assurance protocols, ensuring the safety of U.S. users. The USDS team is dedicated to providing oversight and protection of the TikTok platform and U.S. user data, allowing millions of Americans to engage with TikTok for learning, creativity, and entertainment. The USDS Security - Risk & Compliance team plays a crucial role in managing security compliance in accordance with U.S. requirements and objectives, offering industry-leading governance, risk, and compliance services. This includes Compliance & Security Risk Management, Controls & Compliance Framework, Security Compliance Policies, Vendor Program & Third-Party Risk Management, and more. As a Compliance Analyst within the USDS Security Risk and Compliance team, you will significantly impact mitigating security and compliance risks while maturing USDS operations to meet compliance objectives. Your responsibilities will include understanding compliance requirements related to data security and governance, reviewing and escalating compliance issues, collaborating with various stakeholders, establishing automated FAQs for compliance inquiries, identifying security risks, acting as a compliance advisor, developing KPIs, and utilizing technology to enhance efficiency in responding to inquiries. This role requires a proactive approach to ensure that data security procedures and products are implemented effectively in projects and new technologies.

Responsibilities

  • Understand USDS compliance requirements including data security and data governance, and respond to business-driven on-call inquiries.
  • Review and escalate data compliance issues as required via the on-call intake process.
  • Collaborate with TikTok USDS and Global Business Points of Contact (POCs) to discuss data sharing inquiries and provide feedback for compliant operations.
  • Establish and maintain a set of automated FAQs to address compliance-related inquiries.
  • Review and identify security and compliance risks to business units, ensuring appropriate data security procedures are implemented in projects and new technology.
  • Act as a compliance advisor to enable business operations and Information Security groups in implementing data security and compliance requirements.
  • Develop and measure KPIs to manage team performance and compliance risks impacting organizational compliance and regulatory requirements.
  • Use technology to develop automated mechanisms for responding to business inquiries more efficiently.
  • Utilize case management systems to track business inquiries and compliance assessments, facilitating regular team discussions on complex data sharing inquiries.

Requirements

  • 1+ year of work experience in data security, governance programs, or related areas.
  • 1+ year of experience facilitating discussions with business stakeholders or in client-facing roles.

Nice-to-haves

  • Fluency or proficiency in Mandarin for translating documents and compliance materials.
  • Experience with governance, risk, and compliance projects or implementing data security and governance programs.
  • Ability to communicate compliance requirements to a broad range of technical and non-technical stakeholders.
  • Experience conducting data-driven compliance assessments and driving compliant business solutions.
  • Strong interpersonal skills, being personable, organized, and able to communicate clearly with various stakeholders.
  • Self-motivated with excellent organizational direction, attention to detail, time management, problem-solving, leadership, and negotiation skills.
  • Experience using case management, on-call, or GRC platform tools (e.g., JIRA, Archer) for compliance inquiries.
  • Familiarity with U.S. Regulatory compliance requirements and privacy reporting.
  • Experience with risk and controls frameworks including ISO 27001, NIST CSF, NIST RMF, FAIR, COBIT, ISO 31000, etc.
  • Start-up experience and relevant certifications (CISSP, CISA, CISM, etc.) are a plus.

Benefits

  • 100% premium coverage for employee medical insurance, approximately 75% for dependents, and a Health Savings Account (HSA) with company match.
  • Dental, Vision, Short/Long term Disability, Basic Life, Voluntary Life, and AD&D insurance plans.
  • Flexible Spending Account (FSA) options for Health Care, Limited Purpose, and Dependent Care.
  • 10 paid holidays per year plus 17 days of Paid Personal Time Off (PPTO) and 10 paid sick days per year.
  • 12 weeks of paid Parental leave and 8 weeks of paid Supplemental Disability.
  • Mental and emotional health benefits through EAP and Lyra.
  • 401K company match, gym, and cellphone service reimbursements.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service