Business Operations Protection Lead - USDS (Multiple Positions)
New York, New York, United States
About TikTok U.S. Data Security
TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security (“USDS”) is a subsidiary of TikTok in the U.S. This new, security-first division was created to bring heightened focus and governance to our data protection policies and content assurance protocols to keep U.S. users safe. Our focus is on providing oversight and protection of the TikTok platform and U.S. user data, so millions of Americans can continue turning to TikTok to learn something new, earn a living, express themselves creatively, or be entertained. The teams within USDS that deliver on this
commitment daily span across Trust & Safety, Security & Privacy, Engineering, User & Product Ops, Corporate Functions and more.
Why Join Us
Creation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.
Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day.
To us, every challenge, no matter how difficult, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
Join us.
About the Team
Our team plays a crucial role in ensuring the company’s success. We seek people who are willing to learn and put in the effort to solve problems. Our challenges are not your regular day-to-day problems - you’ll be part of a team that’s developing new solutions to new challenges. It’s working fast, at scale, and we’re making a difference. We are looking for talents to join us on this exciting journey!
Responsibilities
Build, develop, and maintain a team of cyber security practitioners to provide red teaming, penetration testing, code scanning, and vulnerability management services to the organization.
Develop Red Teaming, Penetration Testing, Code Scanning, and Vulnerability Management policies and procedures.
Develop continuous testing tools to evaluate the effectiveness of security and privacy controls.
Research and develop novel approaches for identifying susceptibility tools, tactics and techniques used by adversaries in the wild.
Validate security controls and incident response through offensive security operations.
Lead the team to enhance existing services offerings and security testing capabilities and conduct hands-on technical testing focused on detection and response that necessitates continuously customized tooling to avoid AV, EDR, and other defensive tools and technologies.
Apply security testing and penetration testing techniques and mindset to a wide range of projects, become part of a team of security enthusiasts that perform cutting-edge research, and promote an environment of innovation and knowledge-sharing.
Plan, coordinate, authorize, and execute threat intel informed, scenario based, red and purple team operations; both short and long duration.
Conduct full exploitation within multiple environments, including complex Active Directory and mixed Windows and nix environments.
Identify and communicate findings and strategy effectively to client stakeholders, including technical staff, executive leadership, and legal counsel.
TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security (“USDS”) is a subsidiary of TikTok in the U.S. This new, security-first division was created to bring heightened focus and governance to our data protection policies and content assurance protocols to keep U.S. users safe. Our focus is on providing oversight and protection of the TikTok platform and U.S. user data, so millions of Americans can continue turning to TikTok to learn something new, earn a living, express themselves creatively, or be entertained. The teams within USDS that deliver on this
commitment daily span across Trust & Safety, Security & Privacy, Engineering, User & Product Ops, Corporate Functions and more.
Why Join Us
Creation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.
Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day.
To us, every challenge, no matter how difficult, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
Join us.
About the Team
Our team plays a crucial role in ensuring the company’s success. We seek people who are willing to learn and put in the effort to solve problems. Our challenges are not your regular day-to-day problems - you’ll be part of a team that’s developing new solutions to new challenges. It’s working fast, at scale, and we’re making a difference. We are looking for talents to join us on this exciting journey!
Responsibilities
Build, develop, and maintain a team of cyber security practitioners to provide red teaming, penetration testing, code scanning, and vulnerability management services to the organization.
Develop Red Teaming, Penetration Testing, Code Scanning, and Vulnerability Management policies and procedures.
Develop continuous testing tools to evaluate the effectiveness of security and privacy controls.
Research and develop novel approaches for identifying susceptibility tools, tactics and techniques used by adversaries in the wild.
Validate security controls and incident response through offensive security operations.
Lead the team to enhance existing services offerings and security testing capabilities and conduct hands-on technical testing focused on detection and response that necessitates continuously customized tooling to avoid AV, EDR, and other defensive tools and technologies.
Apply security testing and penetration testing techniques and mindset to a wide range of projects, become part of a team of security enthusiasts that perform cutting-edge research, and promote an environment of innovation and knowledge-sharing.
Plan, coordinate, authorize, and execute threat intel informed, scenario based, red and purple team operations; both short and long duration.
Conduct full exploitation within multiple environments, including complex Active Directory and mixed Windows and nix environments.
Identify and communicate findings and strategy effectively to client stakeholders, including technical staff, executive leadership, and legal counsel.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Categories:
Incident Response Jobs
Leadership Jobs
Tags: Active Directory EDR Governance Incident response Offensive security Pentesting Privacy Red team Strategy Vulnerability management Windows
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsInformation Security Manager jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsSenior Penetration Tester jobsIT Security Engineer jobsSenior Information Security Analyst jobsSecurity Specialist jobsCyber Security Specialist jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsIT Security Analyst jobsStaff Security Engineer jobsSystems Engineer jobsSystems Administrator jobsPrincipal Security Engineer jobsCloud Security Architect jobsSenior Product Security Engineer jobsSecurity Operations Analyst jobsCybersecurity Specialist jobs
CI/CD jobsMalware jobsSaaS jobsForensics jobsEDR jobsEncryption jobsSDLC jobsIDS jobsSplunk jobsBash jobsIPS jobsTop Secret jobsRMF jobsOWASP jobsIntrusion detection jobsSQL jobsThreat detection jobsFinance jobsCompTIA jobsDocker jobsDoDD 8570 jobsITIL jobsCRISC jobsActive Directory jobsGIAC jobs
HIPAA jobsTCP/IP jobsVPN jobsBanking jobsMITRE ATT&CK jobsUNIX jobsTerraform jobsOSCP jobsIT infrastructure jobsClearance Required jobsSANS jobsCISO jobsSOX jobsSOC 2 jobsPolygraph jobsDNS jobsJavaScript jobsCCSP jobsAnsible jobsIndustrial jobsSOAR jobsJira jobsCyber defense jobsCryptography jobsGCIH jobs