TikTok is hiring: Cybersecurity Controls Analyst - USDS in Los Angeles

Overview

Responsibilities

• Collaborate with cross-functional control owners to consult and provide guidance for the design and implementation of key security and compliance controls.
• Collect evidence, test, and monitor the control environment to ensure ongoing effectiveness of controls.
• Join the USDS Security - Risk & Compliance team and contribute to governance, risk, and compliance services in alignment with US compliance requirements and objectives.

Qualifications

Minimum Qualifications:

• 2+ years of IT risk and security controls experience with knowledge of IT and security control frameworks (e.g., NIST-CSF, PCI-DSS, ISO 27001, SOC 2, etc.).
• Bachelor’s degree in IT Security, Information Security, Cybersecurity or equivalent discipline from an accredited college or university, or measurable knowledge/experience from proven industry, military, defense, or government operations.
• Experience in controls evaluation and design with working knowledge of standards (ISO 27001, NIST CSF, SOC 2, etc.).
• Experience performing internal/external control testing as a security control assessor or supporting security compliance as internal compliance or performing control maturity assessments.
• Experience gathering technical control evidence from stakeholders, coordinating review, and analyzing artifacts to demonstrate compliance.
• Demonstrated teamwork and collaboration skills, especially in multi-functional teams.

• Preferred Qualifications:
• Foundational knowledge in IT and security domains (Identity & Access Management, Configuration Management, Vulnerability Management, Incident Management, etc.) and familiarity with related tool stacks.
• Familiar with modern GRC tooling (e.g., Archer, ServiceNow).
• Certifications such as CISA, CISSP, CISM, CRISC, or equivalent.
• Experience working with engineering teams and the ability to communicate control requirements to diverse audiences.
• Strong writing and documentation skills; clear and concise communication.

About USDS

TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security ("USDS") is a subsidiary of TikTok in the U.S. This security-first division focuses on governance and protection of TikTok platform and U.S. user data. Our teams span Trust & Safety, Security & Privacy, Engineering, User & Product Ops, Corporate Functions and more.

Data Security

This role requires the ability to work with and support systems designed to protect sensitive data and information and is subject to national security-related screening.

Why Join Us

Inspiring creativity is at the core of TikTok's mission. Our teams work to help people express themselves, learn, earn, and be entertained. We value curiosity, humility, and impact, and embrace a fast-paced, continuous-improvement mindset as one team.

Diversity & Inclusion

TikTok is committed to an inclusive space where employees are valued for their skills, experiences, and unique perspectives. We strive to celebrate diverse voices and create an environment that reflects the communities we reach.

USDS Reasonable Accommodation

USDS is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities and other protected reasons. If you need assistance or an accommodation, please reach out at https://tinyurl.com/USDS-RA

Job Information

The base salary range for this position in the selected city is $93,860 - $139,080 annually. Compensation may vary outside of this range based on qualifications, skills, competencies, experience, and location. Base pay is part of the Total Package and may include bonuses, incentives, and restricted stock units. Benefits vary by location and include medical, dental, vision coverage, 401(k) with company match, parental leave, disability coverage, life insurance, wellbeing benefits, 10 paid holidays, 10 paid sick days, and 17 days of Paid Personal Time (prorated on hire).

The Company reserves the right to modify benefits programs at any time, with or without notice. For Los Angeles County candidates, the firm abides by applicable fair chance laws and policies.