TikTok
Overview
Information Security and Incident Response Counsel — The TikTok Information Security & Incident Response Legal team seeks a highly experienced legal professional to support privacy and information security matters for TikTok and its parent company, Bytedance. The Global Product and Privacy team provides guidance and compliance support for global privacy, information security, regulatory affairs, and data privacy across TikTok’s products and platforms. Responsibilities
Lead the global legal response to cybersecurity incidents by coordinating with cross-functional teams, including regional legal teams, IT, compliance, and external stakeholders, to ensure a consistent and effective approach across jurisdictions. Collaborate with regional counsel in all operational jurisdictions to provide jurisdiction-specific legal advice, ensuring compliance with data breach notification laws, regulatory requirements, and industry standards globally. Develop and oversee incident response strategies by counseling internal stakeholders on legal implications, risk mitigation, and regulatory considerations throughout the incident lifecycle, including investigation, containment, and remediation. Draft, review, and coordinate regulatory and user notifications in alignment with applicable legal requirements, ensuring accurate and timely communication to impacted parties and regulators. Coordinate comprehensive post-incident reports and lead after-action reviews to identify legal and operational gaps, implement lessons learned, and continuously improve incident response policies and playbooks. Design and maintain incident response playbooks tailored to legal and regulatory requirements across different jurisdictions, ensuring teams are equipped to handle incidents effectively. Lead and participate in tabletop exercises and simulations to test and refine the organization’s incident response readiness, providing legal insights to strengthen protocols and mitigate risks. Provide proactive legal counsel to cross-functional teams on cybersecurity risk mitigation strategies, including contract reviews, vendor management, and policy development to reduce the likelihood and impact of incidents. Monitor evolving global cybersecurity and privacy regulations to ensure incident response practices remain compliant and align with industry best practices. Develop and deliver training for internal teams to promote awareness of legal requirements, privilege considerations, and best practices in incident response and cybersecurity risk management. Qualifications
Minimum Qualifications: Bachelor’s degree plus a Juris Doctorate from an ABA-accredited law school; proven background and substantial experience in information security and data privacy incident response, including investigations, notification determinations, and remediation. Preferred Qualifications: Experience with EU and UK GDPR and NIS2; experience working with international teams in various time zones in a cross-functional environment; strong documentation, presentation, and communication skills in a global role. About TikTok
TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, with offices worldwide. Why Join Us
We foster curiosity, humility, and impact in a rapidly growing tech company. We value collaboration, resilience, and an "Always Day 1" mindset to achieve meaningful breakthroughs for our users. Diversity & Inclusion
TikTok is committed to an inclusive space where employees are valued for their skills, experiences, and perspectives. We celebrate diverse voices and strive to reflect the communities we reach. TikTok Accommodation
TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities or other protected reasons. If you need assistance, please reach out to us at the provided accommodation contact. Job Information — Compensation and benefits vary by location and role. This description includes general information on compensation and benefits and may be updated. EEO statements apply where required.
#J-18808-Ljbffr
Information Security and Incident Response Counsel — The TikTok Information Security & Incident Response Legal team seeks a highly experienced legal professional to support privacy and information security matters for TikTok and its parent company, Bytedance. The Global Product and Privacy team provides guidance and compliance support for global privacy, information security, regulatory affairs, and data privacy across TikTok’s products and platforms. Responsibilities
Lead the global legal response to cybersecurity incidents by coordinating with cross-functional teams, including regional legal teams, IT, compliance, and external stakeholders, to ensure a consistent and effective approach across jurisdictions. Collaborate with regional counsel in all operational jurisdictions to provide jurisdiction-specific legal advice, ensuring compliance with data breach notification laws, regulatory requirements, and industry standards globally. Develop and oversee incident response strategies by counseling internal stakeholders on legal implications, risk mitigation, and regulatory considerations throughout the incident lifecycle, including investigation, containment, and remediation. Draft, review, and coordinate regulatory and user notifications in alignment with applicable legal requirements, ensuring accurate and timely communication to impacted parties and regulators. Coordinate comprehensive post-incident reports and lead after-action reviews to identify legal and operational gaps, implement lessons learned, and continuously improve incident response policies and playbooks. Design and maintain incident response playbooks tailored to legal and regulatory requirements across different jurisdictions, ensuring teams are equipped to handle incidents effectively. Lead and participate in tabletop exercises and simulations to test and refine the organization’s incident response readiness, providing legal insights to strengthen protocols and mitigate risks. Provide proactive legal counsel to cross-functional teams on cybersecurity risk mitigation strategies, including contract reviews, vendor management, and policy development to reduce the likelihood and impact of incidents. Monitor evolving global cybersecurity and privacy regulations to ensure incident response practices remain compliant and align with industry best practices. Develop and deliver training for internal teams to promote awareness of legal requirements, privilege considerations, and best practices in incident response and cybersecurity risk management. Qualifications
Minimum Qualifications: Bachelor’s degree plus a Juris Doctorate from an ABA-accredited law school; proven background and substantial experience in information security and data privacy incident response, including investigations, notification determinations, and remediation. Preferred Qualifications: Experience with EU and UK GDPR and NIS2; experience working with international teams in various time zones in a cross-functional environment; strong documentation, presentation, and communication skills in a global role. About TikTok
TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, with offices worldwide. Why Join Us
We foster curiosity, humility, and impact in a rapidly growing tech company. We value collaboration, resilience, and an "Always Day 1" mindset to achieve meaningful breakthroughs for our users. Diversity & Inclusion
TikTok is committed to an inclusive space where employees are valued for their skills, experiences, and perspectives. We celebrate diverse voices and strive to reflect the communities we reach. TikTok Accommodation
TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities or other protected reasons. If you need assistance, please reach out to us at the provided accommodation contact. Job Information — Compensation and benefits vary by location and role. This description includes general information on compensation and benefits and may be updated. EEO statements apply where required.
#J-18808-Ljbffr