Access Assurance Operations Senior Analyst

des industry leading security and privacy services to ByteDance globally. Our organization uses four principles that guide our strategic and tactical operations. First, we champion trust and transparency, leading the charge in organizational transparency and execution of security and privacy capabilities that drive customer trust. Second, we are a business catalyst and enabler, embodying the DNA of technical innovation. Third, We drive risk informed and empowered decision making, giving our business leaders the information needed to make key decisions. Finally, we proactively identify and reduce risk while enabling innovative product development - to consistently build sustainable world-class security capabilities.

As a direct report to the Access Assurance Operations Lead within Data Protection, you will be a part of the team responsible for Data Defense and Access Assurance (DDAA). As a Senior Access Assurance Operations Analyst, you will be responsible for supporting the Access Assurance Operations Lead along with a team of cross-functional cyber, privacy, engineering, and data protection analysts to define, implement, manage, and measure controls to protect data in accordance with relevant geographical regulations, contractual commitments, and confidentiality requirements.

Responsibilities

• Design global access management program that addresses data residency and fine-grained, role-based access requirements and controls as necessitated by business need and regulations
• Build and review technical and functional requirements for in-house or external technologies to support access management and assurance needs, including applying appropriate security measures
• Design and implement the access review process, ensuring that access is reviewed regularly both for appropriateness of access as well as privilege levels for all users
• Implement and enforce mechanisms to proactively monitor, respond and report on inappropriate data access events
• Interact with users to define access standards and/or necessary modifications to new or existing access policies or roles in support of data security standards
• Develop and maintain data residency and data access requirements and controls as necessitated by business needs and regulations
• Develop use cases and integrate access management technologies with related cybersecurity technologies (e.g., security incident and event management, data classification, vulnerability management)
• Lead interactions with Risk and Compliance to understand control requirements and provide information to support findings for non-compliance with internal security policies
• Responsible for designing and reporting key metrics and visualizations for weekly, monthly and bimonthly cadences across multiple audiences

Qualifications

• Demonstrate ability to quickly assimilate to new knowledge and remain current on new developments in cybersecurity capabilities and industry knowledge
• Experience building and growing a team to meet strategic and tactical objectives; mentoring and coaching staff
• Access management on Windows and Linux operating systems
• Access management on multiple database types (e.g., MySQL, Hive, Redis)
• Securing access to data across multiple geographical locations
• Applications built on a micro-services architecture
• Role and policy based access controls to enforce the principle of least privilege
• Provisioning, modifying, and de-provisioning account access
• Ability to write scripts, configure tools, work with APIs and databases

Preferred Qualifications

• 5 years experience with in-depth designing and deploying access management technologies and controls in enterprise-class organizations
• Bachelors' Degree or industry equivalent work experience

TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at [email protected]

Job Information

[For Pay Transparency] Compensation Description (annually)

The base salary range for this position in the selected city is $147200 - $269800 annually.

Compensation may vary outside of this range depending on a number of factors, including a candidate's qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.

Our company benefits are designed to convey company culture and values, to create an efficient and inspiring work environment, and to support our employees to give their best in both work and life. We offer the following benefits to eligible employees:

We cover 100% premium coverage for employee medical insurance, approximately 75% premium coverage for dependents and offer a Health Savings Account(HSA) with a company match. As well as Dental, Vision, Short/Long term Disability, Basic Life, Voluntary Life and AD&D insurance plans. In addition to Flexible Spending Account(FSA) Options like Health Care, Limited Purpose and Dependent Care.

Our time off and leave plans are: 10 paid holidays per year plus 17 days of Paid Personal Time Off (PPTO) (prorated upon hire and increased by tenure) and 10 paid sick days per year as well as 12 weeks of paid Parental leave and 8 weeks of paid Supplemental Disability.

We also provide generous benefits like mental and emotional health benefits through our EAP and Lyra. A 401K company match, gym and cellphone service reimbursements. The Company reserves the right to modify or change these benefits programs at any time, with or without notice.