Senior Technology Auditor - Internal Audit
ByteDance is a technology company operating a range of content platforms that inform, educate, entertain and inspire people across languages, cultures and geographies.
Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok, as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create content.
Hybrid Work Model: We are back to the office with a hybrid work model, with employees working in the office three days per week.
About the team
We are looking for an experienced technology lead who will contribute to the ongoing development of the Global Technology Audit function and to ByteDance's efforts to enhance its risk management capabilities in support of the company's business objectives. The individual will be part of the Global Technology Audit team and will engage in deep technical assessments, use of innovative assurance methods to impact and influence positive business outcomes across products such as TikTok, Live, TikTok Shop and Lemon8.
Responsibilities
- Technology Audit Delivery: Lead planning and execution of operational audit programs and complex technology control assessments: Information Security, Infrastructure, Emerging Technologies (AI/ML, FinTech). Leverage data analytics to detect risk signals and unearth insights. Communicate issues and recommendations to senior management.
- Integrated Audit Delivery: Lead planning and execution of integrated audits supporting operations and technology for business functions and productions (Trust & Safety, Monetization, FinTech etc.). Develop deep expertise in one or more TikTok products or business functions.
- Technology Risk Assessment: Assist in analysis and identification of emerging technology risks for TikTok. Develop and maintain subject matter expertise in one or more technology domains.
- Stakeholder Relationships: Develop and maintain collaborative working relationships with management, understand the business to provide value-added services, and establish credibility as a management consultant and internal controls resource. Partner with engineering and product teams to advise on design and implementation of technology solutions.
- Professional Development: Continually expand knowledge of the audit profession, industry, and company products through self-study, research, and continuing education efforts. Develop innovative methodologies for auditing new technologies and services.
- Quality Assurance: Ensure the overall quality and consistency of audit work, adhering to department and professional standards. Continuously seek opportunities for audit process improvement.
Qualifications
Minimum Qualifications
- 5+ years of relevant experience in Technology and Operational Audit, Risk Management, Cyber Security Compliance or Security Engineering preferably within the technology sector (Social Media, eCommerce, Fintech etc.) and/or Big4 consulting.
- Bachelor's degree in Information Systems, Computer Science or any other related field with professional certifications such as CISSP, GIAC, CCNA, CISA.
- Experience managing a portfolio of audits, with concurrent oversight and execution of multiple projects.
- Experience managing integrated audits that address a combination of financial/operational and technology objectives.
- Strong communication skills and proven analytical ability to assess complex technology environments against risk assessment outcomes, industry best practices, internal standards and external regulatory requirements.
Preferred Qualifications
- Knowledge of external leading risk and control frameworks such as MITRE, CIS benchmarks, COBIT, ISO27000, NIST etc.
- Experience with product security audits. Understanding of the product lifecycle.
- Familiarity with AI-powered content management platforms and technologies.
- Experience with databases and programming languages (SQL Server, MySQL, Python etc.).
- Experience with social media industry compliance frameworks (DSA, DMA, OSA).
ByteDance is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At ByteDance, our mission is to inspire creativity and enrich life. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.
Job Information
The base salary range for this position in the selected city is $69244 - $140444 annually. Compensation may vary outside of this range depending on a number of factors, including a candidate’s qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.
Our company benefits are designed to convey company culture and values, to create an efficient and inspiring work environment, and to support our employees to give their best in both work and life.
#J-18808-Ljbffr