TikTok
Senior Security Specialist, Detection & Response
TikTok, San Jose, California, United States, 95199
Overview
Senior Security Specialist, Detection & Response. TikTok's Global Security Organization (GSO) builds trust by reducing risk and securing our businesses and products. The Threat Detection and Response (TDR) team monitors security events 24x7 to manage incidents related to cyber, privacy, and data protection for TikTok data, infrastructure, and products. The team surveys networks for signs of breach, malware, or unauthorized access and develops incident response plans, playbooks, and procedures, as well as analyzes incident response data. Responsibilities
Serve as incident commander during cybersecurity incidents and manage the entire incident response lifecycle from detection to resolution, bridging cross-functional stakeholders. Perform technical analysis and assessments of cybersecurity incidents, including malware analysis, packet-level analysis, and system-level forensics. Lead cross-functional projects to improve detection and response capabilities. Mentor and guide TDR security engineers to grow incident response skills. Develop incident response plans and procedures, including identification, remediation, containment, and eradication steps. Synthesize technical details of critical incidents for executive management and provide immediate containment and eradication recommendations. Support onboarding of new products, data, processes, or tools by identifying requirements and integrating them into operations (processes, playbooks, and training). Collaborate with the Detection Engineering team to create custom rulesets to detect and hunt for advanced threat actor TTPs. This position is part of a 24x7x365 operation and may require shift and/or on-call work. Qualifications
Minimum Qualifications
Strong experience with Linux, macOS, and Windows. Experience with SIEM/SOAR tools and ELK stack. Experience identifying and responding to advanced threats and threat actor TTPs. Ability to work within constraints to solve problems and meet objectives. Excellent knowledge of industry-standard frameworks (e.g., MITRE ATT&CK). Ability to work well in an ambiguous environment. One or more programming/scripting languages (e.g., Perl, Java, Python). Preferred certifications: GCIA, GCIH, GREM, OSCP. Preferred Qualifications
Bachelors’ Degree or equivalent work experience in Cybersecurity with a focus on security analytics and incident response. 5 years of directly related experience in computer security incident handling. About TikTok
TikTok is the leading destination for short-form mobile video. Our global headquarters are in Los Angeles and Singapore, with offices in multiple cities worldwide. Why Join Us
We strive to inspire creativity and bring joy through our innovative product. We are committed to curiosity, humility, impact, resilience, and collaboration to achieve meaningful breakthroughs for our users and our company. Diversity & Inclusion
TikTok is committed to an inclusive space where employees are valued for their skills and perspectives. We celebrate diverse voices and aim to reflect the communities we reach. TikTok Accommodation
TikTok provides reasonable accommodations in recruitment for candidates with disabilities or other legally protected reasons. If you need assistance, please reach out to us at the accommodation request link.
#J-18808-Ljbffr
Senior Security Specialist, Detection & Response. TikTok's Global Security Organization (GSO) builds trust by reducing risk and securing our businesses and products. The Threat Detection and Response (TDR) team monitors security events 24x7 to manage incidents related to cyber, privacy, and data protection for TikTok data, infrastructure, and products. The team surveys networks for signs of breach, malware, or unauthorized access and develops incident response plans, playbooks, and procedures, as well as analyzes incident response data. Responsibilities
Serve as incident commander during cybersecurity incidents and manage the entire incident response lifecycle from detection to resolution, bridging cross-functional stakeholders. Perform technical analysis and assessments of cybersecurity incidents, including malware analysis, packet-level analysis, and system-level forensics. Lead cross-functional projects to improve detection and response capabilities. Mentor and guide TDR security engineers to grow incident response skills. Develop incident response plans and procedures, including identification, remediation, containment, and eradication steps. Synthesize technical details of critical incidents for executive management and provide immediate containment and eradication recommendations. Support onboarding of new products, data, processes, or tools by identifying requirements and integrating them into operations (processes, playbooks, and training). Collaborate with the Detection Engineering team to create custom rulesets to detect and hunt for advanced threat actor TTPs. This position is part of a 24x7x365 operation and may require shift and/or on-call work. Qualifications
Minimum Qualifications
Strong experience with Linux, macOS, and Windows. Experience with SIEM/SOAR tools and ELK stack. Experience identifying and responding to advanced threats and threat actor TTPs. Ability to work within constraints to solve problems and meet objectives. Excellent knowledge of industry-standard frameworks (e.g., MITRE ATT&CK). Ability to work well in an ambiguous environment. One or more programming/scripting languages (e.g., Perl, Java, Python). Preferred certifications: GCIA, GCIH, GREM, OSCP. Preferred Qualifications
Bachelors’ Degree or equivalent work experience in Cybersecurity with a focus on security analytics and incident response. 5 years of directly related experience in computer security incident handling. About TikTok
TikTok is the leading destination for short-form mobile video. Our global headquarters are in Los Angeles and Singapore, with offices in multiple cities worldwide. Why Join Us
We strive to inspire creativity and bring joy through our innovative product. We are committed to curiosity, humility, impact, resilience, and collaboration to achieve meaningful breakthroughs for our users and our company. Diversity & Inclusion
TikTok is committed to an inclusive space where employees are valued for their skills and perspectives. We celebrate diverse voices and aim to reflect the communities we reach. TikTok Accommodation
TikTok provides reasonable accommodations in recruitment for candidates with disabilities or other legally protected reasons. If you need assistance, please reach out to us at the accommodation request link.
#J-18808-Ljbffr