Data Compliance and Access Operations Senior Analyst

At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
Join us.

The Global Security Organization provides industry leading security and privacy services to ByteDance globally. Our organization uses four principles that guide our strategic and tactical operations. First, we champion trust and transparency, leading the charge in organizational transparency and execution of security and privacy capabilities that drive customer trust. Second, we are a business catalyst and enabler, embodying the DNA of technical innovation. Third, we drive risk informed and empowered decision making, giving our business leaders the information needed to make key decisions. Finally, we proactively identify and reduce risk while enabling innovative product development - to consistently build sustainable world-class security capabilities.

TikTok is seeking a Senior Analyst for Access Approval Operations to be part of the Data Protection team and will be responsible for overseeing operations and management of data access and data transfer requests to ensure they are in compliance with relevant company policy, geographical regulation, contractual commitments, and confidentiality requirements. This role reports directly to the Access Management and Compliance Lead within the Global Security Organization.

The candidate must be skilled in conducting technical analysis of access policies, rules, and permissions as well as evaluating appropriateness of roles and transactions. The candidate must also have the ability to communicate well, motivate and lead cross-functional teams independently, participate in coordinating response and defensive actions as it relates to identity and access assurance, and disseminate security information as appropriate in support of TikTok's critical business, go to market, and operational infrastructure needs. The candidate will develop, select, and motivate highly effective employees to execute TikTok's business model.

Responsibilities
- Design and implement data access requirements and controls as necessitated by business needs and regulations
- Design the organization's role-based access control scheme and rationalize existing groups
- Design and implement the access review process, ensuring that access is reviewed regularly, both for appropriateness of access as well as privilege levels for all users
- Understand the access management policies and procedures and the implications on TikTok's business model
- Build and review technical and functional requirements for in-house or external technologies to support access management and assurance needs
- Interact with users to define access standards and/or necessary modifications to new or existing access policies or roles in support of data security standards
- Evaluate access request business justifications to align with the principle of least privilege and defined policies for access approvals
- Understand defined data categories and data transfer rules, and the implications on TikTok's regional regulatory obligations
- Evaluate business requests for data transfer based on interoperable needs, to align with regional legal and regulatory requirement
- Serve as access management liaison and interact with cross-business line applicants to communicate access standards and/or gather required information
- Design, implement and maintain new review procedures and continually update internal documentation involving new regulatory, company, and reporting requirements
- Establish, track and report operational metrics to senior leadership
- Address emergency access related matters reported within on-calls
- Coordinate escalations and address any blockers to appropriate cross-business line stakeholders
- Use privileged access management (PAM) tools

Qualifications

- Data classification and concepts of data minimization
- Access management tools, processes, and procedures
- User access administration, role and policy-based access controls, including identity management, provisioning and de-provisioning access
- Access reviews for appropriateness and authorization
- Interpretation of numeric data and statistical principles
- Familiarity with regulatory data privacy landscape (e.g., GDPR, CCPA)
- Ability to design and queries, database access management across multiple types (e.g., MySQL, Redis, MongoDB)

Preferred Qualifications
- 4 years experience working in cybersecurity or information security
- Understanding of data classification and concepts of data minimization, access management tools, processes, and procedures
- Experience with user access administration, role and policy-based access controls, including identity management, provisioning and de-provisioning access, access reviews for appropriateness and authorization
Interpretation of numeric data and statistical principles
Industry standard frameworks & IAM tools
- Familiarity with regulatory data privacy landscape (e.g., GDPR, CCPA)
- Must have ability to design and queries, database access management across multiple types (e.g., MySQL, Redis, MongoDB)

TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at https://shorturl.at/cdpT2

Job Information

[For Pay Transparency] Compensation Description (annually)

The base salary range for this position in the selected city is $118800 - $196000 annually.

Compensation may vary outside of this range depending on a number of factors, including a candidate's qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.

Our company benefits are designed to convey company culture and values, to create an efficient and inspiring work environment, and to support our employees to give their best in both work and life. We offer the following benefits to eligible employees:

We cover 100% premium coverage for employee medical insurance, approximately 75% premium coverage for dependents and offer a Health Savings Account(HSA) with a company match. As well as Dental, Vision, Short/Long term Disability, Basic Life, Voluntary Life and AD&D insurance plans. In addition to Flexible Spending Account(FSA) Options like Health Care, Limited Purpose and Dependent Care.

Our time off and leave plans are: 10 paid holidays per year plus 17 days of Paid Personal Time Off (PPTO) (prorated upon hire and increased by tenure) and 10 paid sick days per year as well as 12 weeks of paid Parental leave and 8 weeks of paid Supplemental Disability.

We also provide generous benefits like mental and emotional health benefits through our EAP and Lyra. A 401K company match, gym and cellphone service reimbursements. The Company reserves the right to modify or change these benefits programs at any time, with or without notice.