Senior Technology Auditor – Internal Audit

ByteDance

hiring-jobs.com

Responsibilities

About ByteDance
Founded in 2012, ByteDance’s mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok, as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create content.

Why Join Us
Creation is the core of ByteDance’s purpose. Our products are built to help imaginations thrive. This is doubly true of the teams that make our innovations possible.
Together, we inspire creativity and enrich life – a mission we aim towards achieving every day.
To us, every challenge, no matter how ambiguous, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
At ByteDance, we create together and grow together. That’s how we drive impact – for ourselves, our company, and the users we serve.
Join us.

About Us
Internal Audit is a global function responsible for providing independent assurance and evaluating the company’s risk management, governance and internal control processes to determine if they are designed and operating effectively. The Internal Audit team plans and executes audit projects according to our risk-based audit plan by evaluating financial, compliance, operational, and IT processes and controls. We work with business functions in addressing risks and improving the control environment through timely and comprehensive audit work and tracking of remediation actions until completion. This role will be part of the Global Technology Audit team within Internal Audit.

Hybrid Work Model: We are back to the office with a hybrid work model, with employees working in the office three days per week.

About the team
We are looking for an experienced technology lead who will contribute to the ongoing development of the Global Technology Audit function and to ByteDance’s efforts to enhance its risk management capabilities in support of the company’s business objectives. The individual will be part of the Global Technology Audit team and will engage in deep technical assessments, use of innovative assurance methods to impact and influence positive business outcomes across products such as TikTok, Live, TikTok Shop and Lemon8.

Responsibilities
– Technology Audit Delivery: Lead planning and execution of operational audit programs and complex technology control assessments: Information Security, Infrastructure, Emerging Technologies (AI/ML, FinTech). Leverage data analytics to detect risk signals and unearth insights. Communicate issues and recommendations to senior management.
– Integrated Audit Delivery: Lead planning and execution of integrated audits supporting operations and technology for business functions and productions (Trust & Safety, Monetization, FinTech etc.). Develop deep expertise in one or more TikTok products or business functions.
– Technology Risk Assessment: Assist in analysis and identification of emerging technology risks for TikTok. Develop and maintain subject matter expertise in one or more technology domains.
– Stakeholder Relationships: Develop and maintain collaborative working relationships with management, understand the business to provide value-added services, and establish credibility as a management consultant and internal controls resource. Partner with engineering and product teams to advise on design and implementation of technology solutions.
– Professional Development: Continually expand knowledge of the audit profession, industry, and company products through self-study, research, and continuing education efforts. Develop innovative methodologies for auditing new technologies and services.
– Quality Assurance: Ensure the overall quality and consistency of audit work, adhering to department and professional standards. Continuously seek opportunities for audit process improvement.

Qualifications

Minimum Qualifications
– 5+ years of relevant experience in Technology and Operational Audit, Risk Management, Cyber Security Compliance or Security Engineering preferably within the technology sector (Social Media, eCommerce, Fintech etc.) and/or Big4 consulting.
– Bachelor’s degree in Information Systems, Computer Science or any other related field with professional certifications such as CISSP, GIAC, CCNA, CISA.
– Experience managing a portfolio of audits, with concurrent oversight and execution of multiple projects.
– Experience managing integrated audits that address a combination of financial/operational and technology objectives.
– Strong communication skills and proven analytical ability to assess complex technology environments against risk assessment outcomes, industry best practices, internal standards and external regulatory requirements.

Preferred Qualifications
– Knowledge of external leading risk and control frameworks such as MITRE, CIS benchmarks, COBIT (Control Objectives for Information and related Technology), ISO27000, NIST etc..
– Experience with product security audits. Understanding of the product lifecycle.
– Familiarity with AI-powered content management platforms and technologies.
– Experience with databases and programming languages (SQL Server, MySQL, Python etc.).
– Experience with social media industry compliance frameworks (DSA, DMA, OSA).

ByteDance is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At ByteDance, our mission is to inspire creativity and enrich life. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

ByteDance Inc. is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at https://shorturl.at/cdpT2

#LI-Hybrid

Job Information

【For Pay Transparency】Compensation Description (annually)

The base salary range for this position in the selected city is $69244 – $140444 annually.​

Compensation may vary outside of this range depending on a number of factors, including a candidate’s qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.​

Our company benefits are designed to convey company culture and values, to create an efficient and inspiring work environment, and to support our employees to give their best in both work and life. We offer the following benefits to eligible employees: ​

We cover 100% premium coverage for employee medical insurance, approximately 75% premium coverage for dependents and offer a Health Savings Account(HSA) with a company match. As well as Dental, Vision, Short/Long term Disability, Basic Life, Voluntary Life and AD&D insurance plans. In addition to Flexible Spending Account(FSA) Options like Health Care, Limited Purpose and Dependent Care. ​

Our time off and leave plans are: 10 paid holidays per year plus 17 days of Paid Personal Time Off (PPTO) (prorated upon hire and increased by tenure) and 10 paid sick days per year as well as 12 weeks of paid Parental leave and 8 weeks of paid Supplemental Disability. ​

We also provide generous benefits like mental and emotional health benefits through our EAP and Lyra. A 401K company match, gym and cellphone service reimbursements. The Company reserves the right to modify or change these benefits programs at any time, with or without notice.​

For Los Angeles County (unincorporated) Candidates:​

Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state, and local laws including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Our company believes that criminal history may have a direct, adverse and negative relationship on the following job duties, potentially resulting in the withdrawal of the conditional offer of employment:​

1. Interacting and occasionally having unsupervised contact with internal/external clients and/or colleagues;​

2. Appropriately handling and managing confidential information including proprietary and trade secret information and access to information technology systems; and​

3. Exercising sound judgment.​

Apply now
To help us track our recruitment effort, please indicate in your cover/motivation letter where (hiring-jobs.com) you saw this job posting.

Job Location