Cyber Threat Hunter, Senior Analyst - USDS
Washington D.C., District of Columbia, United States
About TikTok U.S. Data Security
TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security (“USDS”) is a subsidiary of TikTok in the U.S. This new, security-first division was created to bring heightened focus and governance to our data protection policies and content assurance protocols to keep U.S. users safe. Our focus is on providing oversight and protection of the TikTok platform and U.S. user data, so millions of Americans can continue turning to TikTok to learn something new, earn a living, express themselves creatively, or be entertained. The teams within USDS that deliver on this commitment daily span across Trust & Safety, Security & Privacy, Engineering, User & Product Ops, Corporate Functions and more.
Why Join Us
Creation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.
Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day.
To us, every challenge, no matter how difficult, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
Join us.
In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.
About the Team
This role reports to the Threat Led Defense (USTLD) team lead. USTLD's mission is to ensure that the Threat Detection and Response organization can detect and mitigate the most critical threats to our user data, employees, and operations. The Cyber Threat Hunter will serve as a hands-on-keyboard team member of the Incident Response/Hunt team that will perform Incident Response and Threat Hunting activities on the TikTok enterprise network to include emergency response to cyber incidents as well as continuous and targeted threat hunting.
Day-to-day responsibilities include:
- Demonstration of leadership abilities, clear and concise communication with a variety of stakeholders, and an excellent ability to lead during a crisis
- Agility to adapt to unique environments, and a strong comprehension of malware, emerging threats and calculating risk will be critical to success
- Respond to global cyber incidents caused by internal and external threats to our business operations, that will/can involve on-call availability
- Demonstrate capability to map technical findings to business impacts and communicate those in a manner which is understandable by a non-technical audience.
- Be able to scope an incident, gain consensus on objectives with customers, and lead a team of incident response analysts during an emergency engagement.
- Proactively hunt for adversaries who have evaded traditional detection on networks leveraging a variety of tools and techniques
- Understanding of different attacks and how best to design custom detection, containment, and remediation plans to support the Fusion Center
- Leading and working on projects that will support tactical and strategic business objectives.
- Draft communications, assessments, and reporting that may be both internal and external to the organization, to include leadership and executive management
- Develop and document processes to ensure consistent and scalable response and threat-hunting operations
- Build scripts and automated techniques to go from raw log data to enriched true positive findings
TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security (“USDS”) is a subsidiary of TikTok in the U.S. This new, security-first division was created to bring heightened focus and governance to our data protection policies and content assurance protocols to keep U.S. users safe. Our focus is on providing oversight and protection of the TikTok platform and U.S. user data, so millions of Americans can continue turning to TikTok to learn something new, earn a living, express themselves creatively, or be entertained. The teams within USDS that deliver on this commitment daily span across Trust & Safety, Security & Privacy, Engineering, User & Product Ops, Corporate Functions and more.
Why Join Us
Creation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.
Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day.
To us, every challenge, no matter how difficult, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
Join us.
In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.
About the Team
This role reports to the Threat Led Defense (USTLD) team lead. USTLD's mission is to ensure that the Threat Detection and Response organization can detect and mitigate the most critical threats to our user data, employees, and operations. The Cyber Threat Hunter will serve as a hands-on-keyboard team member of the Incident Response/Hunt team that will perform Incident Response and Threat Hunting activities on the TikTok enterprise network to include emergency response to cyber incidents as well as continuous and targeted threat hunting.
Day-to-day responsibilities include:
- Demonstration of leadership abilities, clear and concise communication with a variety of stakeholders, and an excellent ability to lead during a crisis
- Agility to adapt to unique environments, and a strong comprehension of malware, emerging threats and calculating risk will be critical to success
- Respond to global cyber incidents caused by internal and external threats to our business operations, that will/can involve on-call availability
- Demonstrate capability to map technical findings to business impacts and communicate those in a manner which is understandable by a non-technical audience.
- Be able to scope an incident, gain consensus on objectives with customers, and lead a team of incident response analysts during an emergency engagement.
- Proactively hunt for adversaries who have evaded traditional detection on networks leveraging a variety of tools and techniques
- Understanding of different attacks and how best to design custom detection, containment, and remediation plans to support the Fusion Center
- Leading and working on projects that will support tactical and strategic business objectives.
- Draft communications, assessments, and reporting that may be both internal and external to the organization, to include leadership and executive management
- Develop and document processes to ensure consistent and scalable response and threat-hunting operations
- Build scripts and automated techniques to go from raw log data to enriched true positive findings
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
1
1
0
Categories:
Analyst Jobs
Threat Intel Jobs
Tags: Governance Incident response Malware Privacy Threat detection
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsInformation Security Manager jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsSenior Penetration Tester jobsIT Security Engineer jobsSenior Information Security Analyst jobsSecurity Specialist jobsCyber Security Specialist jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsIT Security Analyst jobsStaff Security Engineer jobsSystems Engineer jobsSystems Administrator jobsPrincipal Security Engineer jobsCloud Security Architect jobsSenior Product Security Engineer jobsSecurity Operations Analyst jobsCybersecurity Specialist jobs
CI/CD jobsMalware jobsSaaS jobsForensics jobsEDR jobsEncryption jobsSDLC jobsIDS jobsSplunk jobsBash jobsIPS jobsTop Secret jobsRMF jobsOWASP jobsIntrusion detection jobsSQL jobsThreat detection jobsFinance jobsCompTIA jobsDocker jobsDoDD 8570 jobsITIL jobsCRISC jobsActive Directory jobsGIAC jobs
HIPAA jobsTCP/IP jobsVPN jobsBanking jobsMITRE ATT&CK jobsUNIX jobsTerraform jobsOSCP jobsIT infrastructure jobsClearance Required jobsSANS jobsCISO jobsSOX jobsSOC 2 jobsPolygraph jobsDNS jobsJavaScript jobsCCSP jobsAnsible jobsIndustrial jobsSOAR jobsJira jobsCyber defense jobsCryptography jobsGCIH jobs