- Conducting ITGC reviews to provide reasonable assurance on the design, implementation and operating effectiveness of the IT General Controls- Conduct GDPR compliance reviews to ensure compliance to laws and regulations- Conduct ISO 27001 reviews and other IT reviews based on management request- Risk Assessment and Gap Analysis including the preparation of risk control matrix (RCM)- Reporting observations and weakness (design and operational deficiencies) identified and testing remediation as well- Design, implement and ensure compliance with information security strategy, policies and procedures- Ensure implementation and maintenance of Information Security (Cyber Program Management, Cyber Threat Management, Identity and Access Management, Data Protection, Privacy, Security Operations and Cyber Analytics)- Risk Assessment of IT Development Projects including Data Migration Reviews and Internal Control Compliances- Implement continuous improvement processes and activities, including Information Security, ISO 27001, GDPR and data protection awareness/training programs- Maintain an understanding of emerging technology, risks and industry trends- Implementation of Information Security Training/Awareness Programs- Assist/Support IT Team(s)
Main Qualification: Recognised Information Security Qualification like ISO 27001, CISA, CISM, CRISC, CISSPAdditional Qualification: Certification in GDPRImportant:A. Excellent understanding of Information Security and Data Protection/PrivacyB. Prior experience with Security Testing and Computer System DiagnosticExperience in Technology Company having Global Operations [Past Big 4 experience is mandatory]Flexibility to travel - Domestic and International
ByteDance Ltd. is an Internet technology company headquartered in Beijing. It was founded by Zhang Yiming in 2012. ByteDance's core product, Toutiao, is a content platform in China and worldwide.