Data Compliance Senior Analyst - USDS

About TikTok . Data SecurityTikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy.

Data Security ( USDS ) is a subsidiary of TikTok in the . This new, security-first division was created to bring heightened focus and governance to our data protection policies and content assurance protocols to keep .

users safe. Our focus is on providing oversight and protection of the TikTok platform and . user data, so millions of Americans can continue turning to TikTok to learn something new, earn a living, express themselves creatively, or be entertained.

The teams within USDS that deliver on this commitment daily span across Trust & Safety, Security & Privacy, Engineering, User & Product Ops, Corporate Functions and more.

Why Join UsCreation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.

Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day. To us, every challenge, no matter how difficult, is an opportunity;

to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always. At TikTok, we create together and grow together.

That's how we drive impact - for ourselves, our company, and the communities we serve. Join us. Team IntroThe USDS Security - Risk & Compliance team is responsible for managing USDS security compliance in accordance with US compliance requirements and objectives, and providing industry leading governance, risk, and compliance services.

The core service offerings include : Compliance & Security Risk Management, Controls & Compliance Framework, Security Compliance Policies, Charters, & Protocols, Vendor Program & Third-Party Risk Management, Governance, Risk, & Compliance (GRC) Platform, and Security & Compliance Behavior & Culture.

In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager / department.

We regularly review our hybrid work model, and the specific requirements may change at any time. Responsibilities : TikTok is seeking a Data Compliance Senior Analyst to be part of the USDS Security Risk and Compliance team.

The role will have a significant impact on mitigating security and compliance risk, and maturing USDS operations to meet its compliance objectives.

Responsibilities include but are not limited to : - Understanding USDS compliance requirements including data compliance, data governance and being able to answer business driven inquiries - Collaborating with TikTok USDS and Global Business POCs to discuss data sharing inquiries and deliver feedback to enable solutions and compliant operations - Performing data driven compliance assessments and handling escalations to leadership as needed - Establishing and maintaining a set of automated FAQs to address compliance-related inquiries - Reviewing and identifying security and compliance risks to the business units and ensuring appropriate data compliance procedures and products are implemented in projects and new technology - Acting as a compliance advisor and partner to enable business operations and Information Security groups by assisting them in the implementation of data driven compliance requirements - Developing and measuring KPIs to help manage team performance and key compliance risks that can impact organizational compliance and regulatory requirements - Using technology to develop automated mechanisms for responding to business inquiries more efficiently - Utilizing case management systems to track business inquiries and compliance assessments and facilitating regular team touch points to discuss and escalate complex data sharing inquiries

Minimum Qualifications- Bachelor's degree or equivalent experience in Data governance, Privacy or Regulatory Compliance- 3+ years experience working within compliance programs, with a strong understanding of industry-specific compliance standards and regulations and .

compliance frameworks Preferred Qualifications- Experience with governance, risk, privacy and compliance projects or implementing data compliance and governance programs- The ability to communicate compliance requirements and concepts to a broad range of technical and non-technical stakeholders- Experience conducting data driven compliance assessments including analyzing data fields and driving compliant business solutions- Experience or familiarity with .

Regulatory compliance requirements, privacy reporting, or other regulatory compliance reporting - Strong interpersonal skills including being personable, organized, and able to to clearly communicate and collaborate with a variety of stakeholders - Self-motivated individual who demonstrates excellent organizational direction, attention to detail, time management and prioritization, problem-solving, leadership, and negotiation skills- Experience using case management, oncall, or GRC platform tools (.

JIRA, Archer, or similar) to receive and triage compliance or security driven inquiries- Fluency or proficiency in Mandarin for translating documents and compliance materials - Start-up experience and one of the following certifications, or equivalent certifications : CISSP, CISA, CISM, etc, is a plus D&I Statement