About the Team The Security Operations team's primary focus is on managing security and defense platforms, tools, and services that support security controls across TikTok USDS’s cloud environments. Your role involves designing, engineering, and deploying infrastructure and security technologies to serve various internal customers. In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time. Responsibilities: - Build technical and functional requirements to configure and deploy tools that support the Security & Privacy mission - Develop standard operating procedures and trainings for each technology - Architect and continuously improve security technology stack, infrastructure process and procedures, support model and cross-function interactions - Manage end-to-end patching processes for servers and cloud workloads to maintain secure and up-to-date systems. - Coordinate change management activities with cross-functional teams to ensure secure, compliant, and well-communicated implementation of system modifications. - Review and investigate operational alerts generated from security tools and escalate as appropriate - Review and assess utilization of security tooling - Promote and drive adoption of security tooling across the enterprise - Partner across the Security teams to respond to cybersecurity incidents - Develop and report security tool coverage metrics and remediation plans - Maintain strong vendor relationships for security tooling for continuous support - Define procedures to validate the effectiveness of the design, deployment, and management of security controls that aim to maintain confidentiality, integrity, and availability of Global Security technology stack
Minimum Qualifications - 5+ years applicable experience deploying and maintaining infrastructure - Hands-on expertise with AWS, Azure, GCP, and/or OCI services (EC2, VPC, S3, IAM, Azure VNets, OCI Compute, etc.). - Proficient in Windows Server 2019/2022 and Linux (Debian, Ubuntu) infrastructure - Working understanding of Active Directory and PKI - Demonstrate ability to quickly assimilate new knowledge and remain current on new developments in cybersecurity capabilities and industry knowledge - Familiarity with source code management tools (e.g., Github, Bitbucket) along with Experience with container platforms (Docker, Kubernetes). - Experience with deploying, managing and operating tools in the following areas: Data loss prevention, Privileged access management, Federated authentication and authorization, Physical Security, Forensics investigation, Governance, Risk and Compliance (GRC) Preferred Qualifications: - CISSP, SSCP, CAP, CCSP, CISM, CSX-P or applicable experience in the Information Security field - AWS Certified Solutions Architect, Microsoft Certified: Azure Administrator, or OCI Architect Associate. - Automate cloud provisioning, configuration management, and deployment pipelines using Python, PowerShell, Bash, or other scripting languages. - Integrate APIs to enable platform interoperability, automation workflows, and custom tooling. - Familiarity with REST APIs, SDKs, and CLI tools for cloud service integration along with Knowledge of networking (DNS, VPN, Load Balancers, Firewalls) and security concepts (IAM, RBAC, Key Management).
Read Full Description