TikTok
Privacy & Data Compliance Specialist - USDS
TikTok, Washington, District of Columbia, us, 20022
Privacy & Data Compliance Specialist - USDS
The USDS Privacy and Integrated Security team is responsible for overseeing and governing all activities of privacy impacts to TikTok USDS' operations. This role is aimed at strengthening security and privacy, in our mission to Inspire Creativity and Enrich Lives. The Privacy and Data Compliance Specialist aligns USDS privacy practice with the global privacy compliance framework (PCF), working with global legal, R&D, Privacy and Data Protection Offices (PDPO), and USDS privacy operation teams. The ideal candidate has a strong background in privacy compliance assessment, an understanding of privacy control mechanisms at technical layers, and a user-centered view of privacy considerations. Initially reporting to the Head of Privacy and Integrated Security, the reporting structure may evolve as the capability grows. The organization follows a hybrid work schedule requiring office presence 3 days a week, or as directed by management. The specific requirements may change over time. Responsibilities
Collaborate with global PDPO to ensure alignment with the global privacy compliance framework (PCF). Promote the global framework within USDS operating arms. Support privacy compliance assessments, identifying gaps in alignment with the global PCF, including privacy controls and safeguards across products. Draft and implement policies, processes, and Standard Operating Procedures (SOPs) to formalize privacy practice and improve privacy operations at USDS, contributing to the broader global privacy framework. Build strong relationships with global and US stakeholders, including R&D/PDPO and US privacy operations, and champion privacy best practices across the organization. Support privacy risk assessments with a focus on control implementation; provide actionable recommendations to mitigate identified risks and enhance privacy compliance. Balance business and engineering cost considerations with robust privacy practices. Engage in special projects as the team expands and capabilities are enhanced. Qualifications
Minimum Qualifications: Major in information security, computer science, law or related field. Significant experience in security, privacy and data protection may substitute formal degree. 3-5+ years of compliance experience. Familiar with industry standards frameworks (NIST Privacy Framework, ISO 27001, ISO/IEC 27701, NIST RMF, ISO 31000, IAPP guidelines, etc.). Understanding of laws and regulations across key regions (e.g., GDPR, CCPA, COPPA). Familiar with PIA/DPIA methods; able to propose practical privacy controls considering business processes and technical capabilities. Ability to navigate complexities in a large enterprise environment. Preferred Qualifications: Experience overseeing GDPR/CCPA external compliance reviews, SOC2, ISO27001, ISO27701 system construction, data governance systems; familiarity with data governance and data security technology solutions; relevant certifications (CIPT, CIPM, CIPP, CISSP, CRISC, etc.). About USDS
TikTok is the leading destination for short-form mobile video. U.S. Data Security (USDS) is a TikTok subsidiary in the U.S. This security-focused division provides heightened governance to data protection policies and content assurance protocols to protect U.S. users. Data Security Statement
This role requires working with systems designed to protect sensitive data and information and may be subject to national security-related screening. Why Join Us
We strive to inspire creativity and bring joy. Our diverse, global teams work to create value for communities and users. We foster curiosity, humility, and an “Always Day 1” mindset to achieve meaningful breakthroughs together. Diversity & Inclusion
TikTok is committed to an inclusive workplace that values varied experiences and perspectives. We celebrate diverse voices to reflect the communities we reach. USDS Reasonable Accommodation
USDS provides reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, or other protected reasons. Please contact us for assistance. Job Information
Compensation and benefits vary by location and may include base salary, bonuses, stock units, medical/dental/vision coverage, 401(k) with company match, parental leave, disability coverage, life insurance, wellbeing benefits, and paid time off. Information provided for transparency purposes.
#J-18808-Ljbffr
The USDS Privacy and Integrated Security team is responsible for overseeing and governing all activities of privacy impacts to TikTok USDS' operations. This role is aimed at strengthening security and privacy, in our mission to Inspire Creativity and Enrich Lives. The Privacy and Data Compliance Specialist aligns USDS privacy practice with the global privacy compliance framework (PCF), working with global legal, R&D, Privacy and Data Protection Offices (PDPO), and USDS privacy operation teams. The ideal candidate has a strong background in privacy compliance assessment, an understanding of privacy control mechanisms at technical layers, and a user-centered view of privacy considerations. Initially reporting to the Head of Privacy and Integrated Security, the reporting structure may evolve as the capability grows. The organization follows a hybrid work schedule requiring office presence 3 days a week, or as directed by management. The specific requirements may change over time. Responsibilities
Collaborate with global PDPO to ensure alignment with the global privacy compliance framework (PCF). Promote the global framework within USDS operating arms. Support privacy compliance assessments, identifying gaps in alignment with the global PCF, including privacy controls and safeguards across products. Draft and implement policies, processes, and Standard Operating Procedures (SOPs) to formalize privacy practice and improve privacy operations at USDS, contributing to the broader global privacy framework. Build strong relationships with global and US stakeholders, including R&D/PDPO and US privacy operations, and champion privacy best practices across the organization. Support privacy risk assessments with a focus on control implementation; provide actionable recommendations to mitigate identified risks and enhance privacy compliance. Balance business and engineering cost considerations with robust privacy practices. Engage in special projects as the team expands and capabilities are enhanced. Qualifications
Minimum Qualifications: Major in information security, computer science, law or related field. Significant experience in security, privacy and data protection may substitute formal degree. 3-5+ years of compliance experience. Familiar with industry standards frameworks (NIST Privacy Framework, ISO 27001, ISO/IEC 27701, NIST RMF, ISO 31000, IAPP guidelines, etc.). Understanding of laws and regulations across key regions (e.g., GDPR, CCPA, COPPA). Familiar with PIA/DPIA methods; able to propose practical privacy controls considering business processes and technical capabilities. Ability to navigate complexities in a large enterprise environment. Preferred Qualifications: Experience overseeing GDPR/CCPA external compliance reviews, SOC2, ISO27001, ISO27701 system construction, data governance systems; familiarity with data governance and data security technology solutions; relevant certifications (CIPT, CIPM, CIPP, CISSP, CRISC, etc.). About USDS
TikTok is the leading destination for short-form mobile video. U.S. Data Security (USDS) is a TikTok subsidiary in the U.S. This security-focused division provides heightened governance to data protection policies and content assurance protocols to protect U.S. users. Data Security Statement
This role requires working with systems designed to protect sensitive data and information and may be subject to national security-related screening. Why Join Us
We strive to inspire creativity and bring joy. Our diverse, global teams work to create value for communities and users. We foster curiosity, humility, and an “Always Day 1” mindset to achieve meaningful breakthroughs together. Diversity & Inclusion
TikTok is committed to an inclusive workplace that values varied experiences and perspectives. We celebrate diverse voices to reflect the communities we reach. USDS Reasonable Accommodation
USDS provides reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, or other protected reasons. Please contact us for assistance. Job Information
Compensation and benefits vary by location and may include base salary, bonuses, stock units, medical/dental/vision coverage, 401(k) with company match, parental leave, disability coverage, life insurance, wellbeing benefits, and paid time off. Information provided for transparency purposes.
#J-18808-Ljbffr