Sr. Network and Web Application Security Specialist
New York, New York, United States
About TikTok
TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.
Why Join Us
Creation is the core of TikTok's purpose. Our products are built to help imaginations thrive. This is doubly true of the teams that make our innovations possible. Together, we inspire creativity and enrich life - a mission we aim towards achieving every day. To us, every challenge, no matter how ambiguous, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always. At TikTok, we create together and grow together. That's how we drive impact-for ourselves, our company, and the users we serve. Join us.
The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk. In order to enhance collaboration and cross-functional partnerships, our organization follows a hybrid work schedule that requires employees to work in the office for 3 days a week, as directed by their manager. We regularly review our hybrid work model, and the specific requirements may change at any time.
As a Network and Web Application Security Specialist in the Security Operations team, you will lead technical validation, deployment, and management of security platforms, tools, and technologies to enforce robust security controls across TikTok’s infrastructure. Collaborating with cross-functional teams of cybersecurity, privacy, and data protection professionals, you will deploy, integrate, and manage security technologies to ensure data security, regulatory compliance, and confidentiality. This role requires expertise in conducting in-depth technical analyses of network and web application security issues, addressing gaps and risks, and building robust validation infrastructure to assess the effectiveness of security controls. You will design and implement validation frameworks and automation pipelines to test solutions against real-world threats, aligning them with TikTok’s operational needs. Additionally, you will effectively communicate complex security issues, coordinate efforts across security domains, and lead defensive actions to protect critical assets. By recruiting, developing, and retaining a skilled security team, you will foster innovation and collaboration, delivering exceptional results aligned with TikTok's business objectives and go-to-market strategies.
Responsibilities
- Develop and execute enterprise-wide network and web application security validation programs.
- Create and maintain automation scripts using tools such as Python and PowerShell.
- Implement regulatory systems aligned with IT and industry security standards.
- Regularly evaluate the performance and utilization of network and web security tools to ensure optimal effectiveness and validation.
- Define technical and functional requirements to configure, deploy, and validate network and web security tooling.
- Design, architect, and enhance the security technology stack, processes, procedures, and support models while ensuring seamless cross-functional collaboration.
- Drive the adoption of network security tools and practices across the enterprise.
- Collaborate with the Security Operations team to respond effectively to cybersecurity incidents.
- Develop and present metrics for network security coverage and create actionable remediation plans.
- Maintain strong vendor partnerships to ensure continuous support for network security tooling.
- Establish procedures to validate the design, deployment, and management of security controls to uphold confidentiality, integrity, and availability.
- Deploy and manage global network security infrastructure, including firewalls, DDoS mitigation systems, VPNs, IPS/IDS systems, egress filtering, cryptography solutions, and application security tools.
- Ensure the high availability and security of global networks, adhering to SLA commitments and participating in a 24x7 on-call rotation as required.
TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.
Why Join Us
Creation is the core of TikTok's purpose. Our products are built to help imaginations thrive. This is doubly true of the teams that make our innovations possible. Together, we inspire creativity and enrich life - a mission we aim towards achieving every day. To us, every challenge, no matter how ambiguous, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always. At TikTok, we create together and grow together. That's how we drive impact-for ourselves, our company, and the users we serve. Join us.
The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk. In order to enhance collaboration and cross-functional partnerships, our organization follows a hybrid work schedule that requires employees to work in the office for 3 days a week, as directed by their manager. We regularly review our hybrid work model, and the specific requirements may change at any time.
As a Network and Web Application Security Specialist in the Security Operations team, you will lead technical validation, deployment, and management of security platforms, tools, and technologies to enforce robust security controls across TikTok’s infrastructure. Collaborating with cross-functional teams of cybersecurity, privacy, and data protection professionals, you will deploy, integrate, and manage security technologies to ensure data security, regulatory compliance, and confidentiality. This role requires expertise in conducting in-depth technical analyses of network and web application security issues, addressing gaps and risks, and building robust validation infrastructure to assess the effectiveness of security controls. You will design and implement validation frameworks and automation pipelines to test solutions against real-world threats, aligning them with TikTok’s operational needs. Additionally, you will effectively communicate complex security issues, coordinate efforts across security domains, and lead defensive actions to protect critical assets. By recruiting, developing, and retaining a skilled security team, you will foster innovation and collaboration, delivering exceptional results aligned with TikTok's business objectives and go-to-market strategies.
Responsibilities
- Develop and execute enterprise-wide network and web application security validation programs.
- Create and maintain automation scripts using tools such as Python and PowerShell.
- Implement regulatory systems aligned with IT and industry security standards.
- Regularly evaluate the performance and utilization of network and web security tools to ensure optimal effectiveness and validation.
- Define technical and functional requirements to configure, deploy, and validate network and web security tooling.
- Design, architect, and enhance the security technology stack, processes, procedures, and support models while ensuring seamless cross-functional collaboration.
- Drive the adoption of network security tools and practices across the enterprise.
- Collaborate with the Security Operations team to respond effectively to cybersecurity incidents.
- Develop and present metrics for network security coverage and create actionable remediation plans.
- Maintain strong vendor partnerships to ensure continuous support for network security tooling.
- Establish procedures to validate the design, deployment, and management of security controls to uphold confidentiality, integrity, and availability.
- Deploy and manage global network security infrastructure, including firewalls, DDoS mitigation systems, VPNs, IPS/IDS systems, egress filtering, cryptography solutions, and application security tools.
- Ensure the high availability and security of global networks, adhering to SLA commitments and participating in a 24x7 on-call rotation as required.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Categories:
AppSec Jobs
NetSec Jobs
Tags: Agile Application security Automation Compliance Cryptography DDoS Firewalls IDS IPS Network security PowerShell Privacy Python VPN
Perks/benefits: Career development Transparency
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Systems Security Officer jobsInformation System Security Officer jobsSenior Cloud Security Engineer jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsInformation Security Manager jobsSenior Network Security Engineer jobsSecurity Consultant jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Information Security Analyst jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsSenior Penetration Tester jobsSystems Engineer jobsChief Information Security Officer jobsSystems Administrator jobsInformation System Security Officer (ISSO) jobsPrincipal Security Engineer jobsIT Security Analyst jobsSenior Product Security Engineer jobsStaff Security Engineer jobsThreat Intelligence Analyst jobsCloud Security Architect jobsInformation Systems Security Engineer jobs
CI/CD jobsKubernetes jobsPowerShell jobsDevSecOps jobsEDR jobsSaaS jobsIDS jobsSplunk jobsIPS jobsRMF jobsSQL jobsTop Secret jobsIntrusion detection jobsSDLC jobsBash jobsThreat detection jobsActive Directory jobsCompTIA jobsITIL jobsDoDD 8570 jobsBanking jobsCRISC jobsOWASP jobsGIAC jobsDocker jobs
Finance jobsTCP/IP jobsClearance Required jobsUNIX jobsVPN jobsHIPAA jobsOSCP jobsIT infrastructure jobsCISO jobsTerraform jobsIndustrial jobsSOC 2 jobsSANS jobsJavaScript jobsSOAR jobsCCSP jobsDNS jobsPolygraph jobsMITRE ATT&CK jobsNIST 800-53 jobsData Analytics jobsGCIH jobsSOX jobsJira jobsAnsible jobs