Responsibilities
About the Team As a part of ByteDance's Security Department, the Security Governance and Compliance team plays a pivotal role in supporting various business lines. This involves offering expertise in security governance and compliance by implementing robust information security management systems. The team is dedicated to tailoring solutions that address key aspects such as data security, privacy protection, and regulatory compliance. Moreover, they actively pursue and obtain a multitude of security compliance qualifications and certifications essential for the diverse business lines. Additionally, the team actively engages in shaping industry standards for security and privacy, while also conducting advanced research to anticipate and navigate future risks and opportunities. Responsibilities - Stay abreast of the latest developments of laws, regulations, policies and information security standards related to Network Security, Data Security and Data protection. Ensure timely updates and maintenance of the internal information security management system. - Apply for information security certifications such as ISO 27001, SOC and PCI for our products. - Advocate for and oversee the implementation of security compliance and privacy protection requirements. Promptly address and rectify any non-compliant items. - Validate and verify that the organization's security controls meet industry requirements. Conduct thorough examinations of processes, systems, policies, procedures, network diagrams, and system configurations. - Monitor business activities through collaborating with cross-functional team leaders to guarantee ongoing compliance with external certifications.
Qualifications
Minimum Qualifications: - More than 3 years of relevant experience in managing ISO 27001:2022, SOC 2 audit, and compliance programs within a global organizational setting. - Demonstrate extensive knowledge and hands-on experience with cybersecurity frameworks, such as ISO 27001, PCI-DSS, SOC 2, and other relevant regulatory requirements. - Exhibit excellent communication skills, logical reasoning abilities. - Robust commitment to continuous learning and a collaborative, team-oriented mindset. Preferred Qualifications: - Experience in ISO management systems, SOC audit, and PCI certification is preferred. - Relevant industry certifications such as CISM, CISA, CISSP is preferred.
Job Information
About Us
Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok, Lemon8, CapCut and Pico as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create content.
Why Join ByteDance
Inspiring creativity is at the core of ByteDance's mission. Our innovative products are built to help people authentically express themselves, discover and connect – and our global, diverse teams make that possible. Together, we create value for our communities, inspire creativity and enrich life - a mission we work towards every day.
As ByteDancers, we strive to do great things with great people. We lead with curiosity, humility, and a desire to make impact in a rapidly growing tech company. By constantly iterating and fostering an "Always Day 1" mindset, we achieve meaningful breakthroughs for ourselves, our Company, and our users. When we create and grow together, the possibilities are limitless. Join us.
Diversity & Inclusion
ByteDance is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At ByteDance, our mission is to inspire creativity and enrich life. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.
