Security and Compliance Engineering Program Manager

$102,600 - $231,120/Yr

Tiktok - Mountain View, CA

posted about 2 months ago

Full-time - Mid Level
Mountain View, CA
Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services

About the position

As a Technical Security and Compliance Engineering Program Manager at TikTok, you will play a crucial role in ensuring that our organization adheres to regulatory, compliance, and security requirements. This position is part of the U.S. Data Security (USDS) division, which focuses on protecting U.S. user data and maintaining the integrity of the TikTok platform. You will collaborate with cross-functional engineering teams to implement compliance requirements related to strategic planning, new feature releases, and technology architecture modifications. Your responsibilities will include strategizing with teams to deliver solutions to ambiguous problems, supporting regulatory and compliance initiatives, and developing compliance guidelines and documentation to help stakeholders adhere to regulatory requirements. In this role, you will also provide technical expertise and program support across various engineering teams, including Infrastructure, Platform, Product Engineering, and Data Science. You will develop a solid understanding of back-end big data processing and business processes, support risk assessments, and help design and build compliance and security controls. Your project management skills will be essential in delivering complex initiatives in a fast-paced environment. Additionally, you will conduct technical investigations in response to compliance and security-related events, serving as a liaison between security functions and business units to address security issues efficiently. This position requires a hybrid work schedule, with employees expected to work in the office three days a week, or as directed by their manager. TikTok values creativity and collaboration, and you will be part of a team that inspires creativity and brings joy to users while ensuring their safety and security.

Responsibilities

  • Drive implementation of compliance requirements in relation to strategic planning, new feature release, and technology architecture modifications for cross-functional engineering teams.
  • Support cross-functional regulatory, security, and compliance initiatives.
  • Assist in the development and maturity of compliance guidelines and required documentation for stakeholder teams to achieve adherence to regulatory requirements through analysis of use cases.
  • Apply policies and guidelines to Engineering functions to enable compliance.
  • Help support the improvement and maintenance of guidelines for the security of U.S. TikTok Users.
  • Deliver Compliance Training for Technical engineering audiences.
  • Identify potential areas of compliance gaps and propose mitigation strategies or remediation solutions for risk reduction.
  • Establish and maintain compliance testing/monitoring, dashboards, and management reporting.
  • Support Engineering teams with regulatory and legal inquiries and audit requests for information.

Requirements

  • Bachelor's degree in Information Security, Computer Science, or a related field (equivalent experience may be considered).
  • 3 to 5 years of experience working within compliance programs; experience with regulatory and legal compliance frameworks.
  • Previous experience in a security assurance or compliance role, with a focus on documentation, communication, and liaison functions.
  • Strong understanding of industry-specific compliance standards and regulations.
  • Experience executing data governance, data protection, and change management processes preferred.
  • Fast learner with strong attention to detail; able to pick up complex concepts quickly.
  • Comfortable working in ambiguous situations where solutions are not immediately certain.

Nice-to-haves

  • Familiarity with advertising systems and business processes.
  • Experience reporting risk (KRIs/KPIs) within a global enterprise, developing a culture of risk-informed decision making.
  • Experience with GDPR reporting, privacy reporting, or regulatory compliance reporting.
  • Experience with preparing executive reports and/or dashboards.
  • Excellent communication and interpersonal skills.
  • Strong analytical and problem-solving abilities.
  • GCIH, GCIA, or CISSP, CCP, CCE, CRCM or CCEP (or industry-specific) compliance certification are a plus.
  • Proficient in G-Suite tools.
  • Passion for maintaining a high standard of work.
  • Familiarity with privacy laws and regulations.
  • Usage and interest in short video platforms.

Benefits

  • 100% premium coverage for employee medical insurance, approximately 75% premium coverage for dependents.
  • Health Savings Account (HSA) with a company match.
  • Dental, Vision, Short/Long term Disability, Basic Life, Voluntary Life and AD&D insurance plans.
  • Flexible Spending Account (FSA) Options like Health Care, Limited Purpose and Dependent Care.
  • 10 paid holidays per year plus 17 days of Paid Personal Time Off (PPTO) (prorated upon hire and increased by tenure).
  • 10 paid sick days per year.
  • 12 weeks of paid Parental leave and 8 weeks of paid Supplemental Disability.
  • Mental and emotional health benefits through EAP and Lyra.
  • 401K company match.
  • Gym and cellphone service reimbursements.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service