Responsibilities
TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.
Why Join Us
Creation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.
Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day.
To us, every challenge, no matter how difficult, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
Want more jobs like this?
Get Software Engineering jobs in San Jose, CA delivered to your inbox every week.
At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
Join us.
The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk. In order to enhance collaboration and cross-functional partnerships, our organization follows a hybrid work schedule that requires employees to work in the office for 3 days a week, as directed by their manager. We regularly review our hybrid work model, and the specific requirements may change at any time.
This role is a part of Security Tools Operations team, whose responsibilities will include designing and implementing IT security solutions that address the organization's needs, assessing risks and vulnerabilities, and developing strategies to mitigate them. The role will be responsible for developing, implementing and validating IT security architectures, in technical areas like Endpoint security, Network security, Cloud security, Identity and Authentication, Secure SDLC etc. The role will lead and implement security architectures, review policies and procedures, collaborating with other IT professionals to integrate solutions, communicate technical concepts to stakeholders, manage projects, and stay up-to-date with industry trends. An employee in this role ensures that solutions are designed and implemented accurately, make informed decisions on build vs buy and provide guidance to other IT professionals by continuously learning and improving skills to adapt to changing technologies. Overall, the person in this role requires highly skilled in IT, infrastructure and cybersecurity technical areas, including technical knowledge, analytical and problem-solving skills, communication skills, project management skills, collaboration skills, industry knowledge, business acumen, attention to detail, and adaptability.
Responsibilities
- Design and implement technical control in security domains like endpoint protection, networking, cloud security, identify and authorization, security operation etc.
- Working closely with TikTok XFN teams to find out the GAPs in security defense, implementing architecture to mitigate them. Candidates should prior experience in selecting and prioritizing security controls that are most critical for their organization's security posture.
- Design and implement security control validation architectures, including research and design of validation framework, validation tools evaluation and development, validation operation etc.
- Research and implement AI best practices in Security Tools Operation domain, improving efficiency and automation of daily work.
- The role will need some hands-on work of security operations and tools development when necessary, and could coach other engineers on team.
Qualifications
Minimum Qualifications
1. Strong understanding of the principles of IT security, infrastructure security, and cybersecurity, including common threats and vulnerabilities, risk management, and compliance frameworks.
2. Strong hands on experience of technology used in IT, infrastructure and cybersecurity, including networking, cloud security, encryption, identity and access management (authentication, authorization, and access control), security operations on SIEM/SOAR etc.
3. Working experience with various security standards and guidelines, such as ISO 27001, NIST, and PCI DSS and should have the ability to interpret and apply these standards to organization's specific needs.
4. Excellent team-working skills are needed. Previous successful working experience through different time zones is a plus.
Preferred Qualifications
1. A bachelor's (master's preferred) degree in computer science, information technology, cybersecurity, or a related field is usually required.
2. Experience in software development will be a big plus. Previous knowledge of at least one of the below programming languages is a big plus: Python/Perl/Shell/C/C++/Go.
3. Industry certifications, such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or CompTIA Security+, are a plus.
4. Previous working experience in product design and development of Compliance/Regulatory Automation systems are highly preferred
TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.
TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at https://shorturl.at/cdpT2
Job Information
[For Pay Transparency] Compensation Description (annually)
The base salary range for this position in the selected city is $147200 - $269800 annually.
Compensation may vary outside of this range depending on a number of factors, including a candidate's qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.
Benefits may vary depending on the nature of employment and the country work location. Employees have day one access to medical, dental, and vision insurance, a 401(k) savings plan with company match, paid parental leave, short-term and long-term disability coverage, life insurance, wellbeing benefits, among others. Employees also receive 10 paid holidays per year, 10 paid sick days per year and 17 days of Paid Personal Time (prorated upon hire with increasing accruals by tenure).
The Company reserves the right to modify or change these benefits programs at any time, with or without notice.
For Los Angeles County (unincorporated) Candidates:
Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state, and local laws including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Our company believes that criminal history may have a direct, adverse and negative relationship on the following job duties, potentially resulting in the withdrawal of the conditional offer of employment:
1. Interacting and occasionally having unsupervised contact with internal/external clients and/or colleagues;
2. Appropriately handling and managing confidential information including proprietary and trade secret information and access to information technology systems; and
3. Exercising sound judgment.