Cyber Threat Hunter, Senior Analyst - USDS

Washington, DC

Applications have closed

Responsibilities

About TikTok U.S. Data Security
TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security (“USDS”) is a subsidiary of TikTok in the U.S. This new, security-first division was created to bring heightened focus and governance to our data protection policies and content assurance protocols to keep U.S. users safe. Our focus is on providing oversight and protection of the TikTok platform and U.S. user data, so millions of Americans can continue turning to TikTok to learn something new, earn a living, express themselves creatively, or be entertained. The teams within USDS that deliver on this commitment daily span across Trust & Safety, Security & Privacy, Engineering, User & Product Ops, Corporate Functions and more.

Why Join Us
Creation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.
Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day.
To us, every challenge, no matter how difficult, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
Join us.

In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.

About the Team
This role reports to the Threat Led Defense (USTLD) team lead. USTLD's mission is to ensure that the Threat Detection and Response organization can detect and mitigate the most critical threats to our user data, employees, and operations. The Cyber Threat Hunter will serve as a hands-on-keyboard team member of the Incident Response/Hunt team that will perform Incident Response and Threat Hunting activities on the TikTok enterprise network to include emergency response to cyber incidents as well as continuous and targeted threat hunting.

Day-to-day responsibilities include:
- Demonstration of leadership abilities, clear and concise communication with a variety of stakeholders, and an excellent ability to lead during a crisis
- Agility to adapt to unique environments, and a strong comprehension of malware, emerging threats and calculating risk will be critical to success
- Respond to global cyber incidents caused by internal and external threats to our business operations, that will/can involve on-call availability
- Demonstrate capability to map technical findings to business impacts and communicate those in a manner which is understandable by a non-technical audience.
- Be able to scope an incident, gain consensus on objectives with customers, and lead a team of incident response analysts during an emergency engagement.
- Proactively hunt for adversaries who have evaded traditional detection on networks leveraging a variety of tools and techniques
- Understanding of different attacks and how best to design custom detection, containment, and remediation plans to support the Fusion Center
- Leading and working on projects that will support tactical and strategic business objectives.
- Draft communications, assessments, and reporting that may be both internal and external to the organization, to include leadership and executive management
- Develop and document processes to ensure consistent and scalable response and threat-hunting operations
- Build scripts and automated techniques to go from raw log data to enriched true positive findings

Qualifications

Education:
- Bachelor's degree or industry-equivalent work experience in Computer Science, Information Security, Computer Engineering, or a related discipline

Minimum Qualifications:
- 4+ years of experience in information security and 4+ years of experience handling incidents and/or threat-hunting
- Ability to be on-call and work a hybrid on-site (Washington DC) schedule
- Industry certifications such as CISSP, CISM, CISA, GCIH, CFCE, GFCA, GREM and/or GCFE
- Can clearly communicate the Incident Response Lifecycle and the Kill Chain (Attack) Life Cycle
- Detailed understanding of current cyber security threats, attacks, and adversary Tactics, Techniques, and Procedures. Such as Advanced Persistent Threat (APT), Cyber Crime, Hacktivism
- 3+ years of experience working with methods utilized for evidence collection, maintenance of chain of custody and associated documentation, evidence storage and analysis, and evidentiary reporting
- Experience developing and executing work processes in a fast-paced technical environment
- Ability to prioritize risks to the business in real-time
- Excellent analytical and problem-solving skills with attention to detail
- Thorough understanding of cyber security operations, security monitoring, EDR and SIEM tools

Preferred Qualifications:
- Experienced in conducting Incident Response and Threat hunting in Unix/Linux and Cloud environments
- Experienced searching large data sets in Splunk
- Excellent communication skills (verbal and written) along with teamwork collaboration per global and multi-functional teams and intelligence source groups
- Demonstrates excellent time management, prioritization, negotiation, and interpersonal relations
- Highly motivated to contribute and grow within a complex area of emerging importance in an enterprise environment

This role requires the ability to work with and support systems designed to protect sensitive data and information. As such, this role will be subject to strict national security-related screening.

TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at https://shorturl.at/ktJP6

Job Information

【For Pay Transparency】Compensation Description (salaried)

The base salary range for this position in the selected city is 106920 - 242820 annually.​

Compensation may vary outside of this range depending on a number of factors, including a candidate’s qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.​

Our company benefits are designed to convey company culture and values, to create an efficient and inspiring work environment, and to support our employees to give their best in both work and life. We offer the following benefits to eligible employees:​

We cover 100% premium coverage for employee medical insurance, approximately 75% premium coverage for dependents and offer a Health Savings Account(HSA) with a company match. As well as Dental, Vision, Short/Long term Disability, Basic Life, Voluntary Life and AD&D insurance plans. In addition to Flexible Spending Account(FSA) Options like Health Care, Limited Purpose and Dependent Care.​

Our time off and leave plans are: 10 paid holidays per year plus 17 days of Paid Personal Time Off (PPTO) (prorated upon hire and increased by tenure) and 10 paid sick days per year as well as 12 weeks of paid Parental leave and 8 weeks of paid Supplemental Disability.​

We also provide generous benefits like mental and emotional health benefits through our EAP and Lyra. A 401K company match, gym and cellphone service reimbursements. The Company reserves the right to modify or change these benefits programs at any time, with or without notice.​

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  0  0

Tags: APT CFCE CISA CISM CISSP Cloud Computer Science Cyber crime EDR GCFE GCIH Governance GREM Incident response Linux Malware Monitoring Privacy SIEM Splunk Threat detection UNIX

Perks/benefits: 401(k) matching Career development Equity / stock options Fitness / gym Flex hours Flexible spending account Flex vacation Health care Insurance Medical leave Parental leave Transparency

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.