Compliance Analyst - USDS
TikTok
London, UK
Published 1 week ago
Compliance Management Systems / Technology
Full time
Responsibilities
TikTok is seeking a Compliance Analyst to be part of the USDS Security Risk and Compliance team. The role will have a significant impact on mitigating security and compliance risk, and maturing USDS operations to meet its compliance objectives. Responsibilities include but are not limited to:
- Compliance
- Understand USDS compliance requirements including data security, data governance and be able to answer business driven oncall inquiries and deliver feedback to enable compliance operations
- Drive compliance assessments and identify compliance risks and mitigations for new product and feature launches
- Act as a compliance advisor and partner to enable business operations and Security and Privacy groups by assisting them in the implementation of data security, compliance requirements, and information security technologies
- Identify security and compliance risks to the business units and ensure appropriate data security procedures are implemented in projects and technology
- Program Management:
- Deliver strong customer service to your global business stakeholders including responsiveness, follow through and clear communication
- Develop and measure KPIs derived from business driven oncalls to help manage team performance and key compliance risks that can impact organizational compliance and regulatory requirements
- Use technology to develop automated mechanisms for responding to business inquiries more efficiently
- Utilize case management systems to track business inquiries and compliance assessments
Qualifications
Minimum Qualifications
- Experience with U.S. Regulatory compliance requirements and implementing data security and governance programs
- Experience identifying compliance or privacy risks for new product/feature launches
- Ability to collaborate with global engineers and product managers on product/feature launches
- Experience with case management tools or oncall management and ability to respond to compliance or security driven inquiries
- Experience conducting data driven compliance assessments including analyzing data fields and complex data flows
- Ability to collaborate with operations teams, communicate technical concepts to a broad range of technical and non-technical staff, and provide compliant solutions
- Demonstrates excellent organizational direction, time management, problem-solving, prioritization, goal setting, leadership, motivation, negotiation, and interpersonal relations; 3-5+ years applicable experience
Preferred Qualifications:
- Start-up experience
- Experience with GDPR reporting, privacy reporting, or regulatory compliance reporting
- CISSP / CISA / CISM
- Experience with case management tools or GRC platforms (JIRA, Archer)
- Experience with risk and controls frameworks including (ISO 27001, NIST CSF, NIST RMF, FAIR, COBIT, NIST RMF, ISO 31000 etc.)
TikTok is seeking a Compliance Analyst to be part of the USDS Security Risk and Compliance team. The role will have a significant impact on mitigating security and compliance risk, and maturing USDS operations to meet its compliance objectives. Responsibilities include but are not limited to:
- Compliance
- Understand USDS compliance requirements including data security, data governance and be able to answer business driven oncall inquiries and deliver feedback to enable compliance operations
- Drive compliance assessments and identify compliance risks and mitigations for new product and feature launches
- Act as a compliance advisor and partner to enable business operations and Security and Privacy groups by assisting them in the implementation of data security, compliance requirements, and information security technologies
- Identify security and compliance risks to the business units and ensure appropriate data security procedures are implemented in projects and technology
- Program Management:
- Deliver strong customer service to your global business stakeholders including responsiveness, follow through and clear communication
- Develop and measure KPIs derived from business driven oncalls to help manage team performance and key compliance risks that can impact organizational compliance and regulatory requirements
- Use technology to develop automated mechanisms for responding to business inquiries more efficiently
- Utilize case management systems to track business inquiries and compliance assessments
Qualifications
Minimum Qualifications
- Experience with U.S. Regulatory compliance requirements and implementing data security and governance programs
- Experience identifying compliance or privacy risks for new product/feature launches
- Ability to collaborate with global engineers and product managers on product/feature launches
- Experience with case management tools or oncall management and ability to respond to compliance or security driven inquiries
- Experience conducting data driven compliance assessments including analyzing data fields and complex data flows
- Ability to collaborate with operations teams, communicate technical concepts to a broad range of technical and non-technical staff, and provide compliant solutions
- Demonstrates excellent organizational direction, time management, problem-solving, prioritization, goal setting, leadership, motivation, negotiation, and interpersonal relations; 3-5+ years applicable experience
Preferred Qualifications:
- Start-up experience
- Experience with GDPR reporting, privacy reporting, or regulatory compliance reporting
- CISSP / CISA / CISM
- Experience with case management tools or GRC platforms (JIRA, Archer)
- Experience with risk and controls frameworks including (ISO 27001, NIST CSF, NIST RMF, FAIR, COBIT, NIST RMF, ISO 31000 etc.)