Responsibilities

About the Role: We are seeking a Privacy Program Manager to join our PDPO team, to serve as the primary bridge and gatekeeper between the TikTok product team and the Compliance Teams. In this role you will act as a custodian and translator responsible for harmonizing and improving processes, ensuring good and consistent regulatory compliance standards are met within the product team. If you are passionate about privacy, data protection, and possess the expertise to assess and enhance our privacy practices, we invite you to join our team and contribute to our mission of maintaining the highest standard of data privacy and security. Key Responsibilities: - Liaison & Communication: Serve as the primary liaison between TikTok's platform responsibility product teams and the regulatory compliance and legal departments. Translate complex regulatory requirements into actionable operational workflows. - Audit & Compliance: Facilitate external audits by attending control design walkthroughs and tests of operating effectiveness. Support the maintenance and enhancement of the privacy control framework to align with current regulations and industry standards. - Project Management: Lead privacy-related projects from conception to execution. Develop comprehensive project plans and collaborate with a wide range of technical and non-technical stakeholders to ensure timely completion. - Program Development: Create and maintain essential program documentation, including process flows, policies, frameworks, and management reports. - Training & Enablement: Develop and deliver internal training materials on privacy controls, certifications, and best practices to enhance organizational awareness and compliance. - Continuous Improvement: Stay current with the latest privacy trends, digital regulations, and industry best practices to continuously strengthen the program.

Qualifications

Minimum Qualifications: - Bachelor's degree in Information Technology, Cybersecurity, Law, Business, or a related field. Proven experience in conducting audits or facilitating external audits. - 3+ years of governance risk and compliance (GRC) or related privacy, compliance, and security experience - Professional working proficiency in both English and Mandarin Chinese. Bilingual fluency in Mandarin is necessary to communicate with Mandarin speaking stakeholders based in Mainland China. - Strong project management skills, with the ability to manage multiple projects simultaneously, with the ability to translate legal and regulatory requirements into actionable plans. - Experience collaborating closely with engineers, business teams, and security partners, including incident response, red teams, and architects to seamlessly incorporate cybersecurity controls and risk management processes into their day-to-day operations. - Familiarity with core privacy concepts such as data minimization, purpose limitation, data sovereignty, transparency, and data retention. Experience with privacy by design principles and engineering in a privacy program. - Familiarity with privacy laws and regulations such as GDPR, CCPA, DSA, DMA Preferred Qualifications: - Strong understanding of digital regulations, content moderation laws, and online safety frameworks (i.e. Digital Services Act). - A highly motivated individual, with strong communication and relationship-building skills, and demonstrate a record of ongoing accomplishment and commitment to excellence. - Accustomed to working in a fast-paced, startup-like environment. Adaptable to changing or emerging priorities. - Prior experience working with regulatory authorities or law enforcement agencies is a plus.

Job Information

[For Pay Transparency]Compensation Description (Annually)

The base salary range for this position in the selected city is $111600 - $235600 annually.

Compensation may vary outside of this range depending on a number of factors, including a candidate's qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.

Benefits may vary depending on the nature of employment and the country work location. Employees have day one access to medical, dental, and vision insurance, a 401(k) savings plan with company match, paid parental leave, short-term and long-term disability coverage, life insurance, wellbeing benefits, among others. Employees also receive 10 paid holidays per year, 10 paid sick days per year and 17 days of Paid Personal Time (prorated upon hire with increasing accruals by tenure).

The Company reserves the right to modify or change these benefits programs at any time, with or without notice.

For Los Angeles County (unincorporated) Candidates:

Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state, and local laws including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Our company believes that criminal history may have a direct, adverse and negative relationship on the following job duties, potentially resulting in the withdrawal of the conditional offer of employment:

1. Interacting and occasionally having unsupervised contact with internal/external clients and/or colleagues;

2. Appropriately handling and managing confidential information including proprietary and trade secret information and access to information technology systems; and

3. Exercising sound judgment.