About the Team: The Global Internal Control team is responsible for performing risk identification and assessing the design and operating effectiveness of internal controls across ByteDance global functions. The team's mission is to be a trusted advisor and add tangible value to the company through insightful and comprehensive risk management practices and proactive internal controls advisory support.
Role: We are seeking an experienced Internal Controls professional to support controls to strengthen and streamline internal operations across both organizations. This role is critical to ensuring the business can scale and move quickly while remaining compliant with applicable local laws and industry regulations—without creating unnecessary friction or operational paralysis.
The ideal candidate brings a strong understanding of control frameworks (COSO, NIST, or COBIT...etc,.), experience working with regulated organizations (including social media or technology-driven companies), and the ability to translate complex regulatory requirements into practical, effective controls.
Responsibilities:
- Design, implement, and maintain internal controls aligned with global risk assessments of third parties/ BPO's and industry requirements.
- Support compliance efforts related to applicable regulations (e.g., data protection, financial controls, platform governance, operational risk).
- Partner cross-functionally with Legal, Finance, Product, Engineering, and Policy teams to embed controls into business processes.
- Assess control effectiveness and identify gaps, risks, and opportunities for improvement.
- Translate complex regulatory or operational requirements into clear, actionable control frameworks.
- Ensure controls enable business agility and scalability without slowing execution.
- Support audits, regulatory inquiries, and internal assessments as needed.
- Develop documentation, policies, and procedures that clearly articulate control expectations.
- Provide guidance and education to stakeholders on control design, compliance requirements, and risk mitigation.
Requirements
Minimum Qualifications:
- 5+ years of experience in internal controls, risk management, compliance, audit, or related disciplines.
- Strong knowledge of global regulatory and control environments, including U.S. regulations and frameworks or other operational risk standards.
- Experience supporting regulated, fast-growing organizations, preferably in technology, social media, or similarly dynamic industries.
- Proven analytical and problem-solving skills, with the ability to break down complex issues into practical, structured solutions.
- Strong risk judgment, with the ability to assess detailed control issues while understanding broader business impact and trade-offs.
- Excellent written and verbal communication skills, including experience influencing and partnering with cross-functional and global stakeholders.
- Ability to balance risk management with business enablement, operating effectively across multi-jurisdictional teams in an evolving organization.