Security Specialist, Detection & Response
San Jose, California, United States
The mission of TikTok's Global Security Organization is to build and earn trust by reducing risk and securing our businesses and products. Also known as "GSO", this team is the foundation of our efforts to keep TikTok safe, secure, and operating at scale for over 1 billion people around the world. We work to ensure that the TikTok platform is safe and secure, that our users' experience and their data remains safe from external or internal threats, and that we comply with global regulations wherever TikTok operates.
Trust is one of TikTok's biggest initiatives, and security is integral to our success. In whatever ways users interact with us — whether they're watching videos on their For You page, interacting with a Live video, or buying products on TikTok Shop — GSO protects their data and privacy, so they can have a secure and trustworthy experience.
As a Security Engineer, you will be a member of TikTok’s enterprise Threat Detection and Response team. The Threat Detection and Response team is responsible for 24x7 monitoring of multiple security-related information sources to manage incidents related to cyber, privacy, and data protection for TikTok data, infrastructure, and products. The Threat Detection and Response team will regularly survey TikTok's networks for signs of a breach, malware, or unauthorized access. Additionally, the Threat Detection and Response team is responsible for developing and maintaining incident response plans, playbooks and procedures. Finally, the Threat Detection and Response team will be responsible for data collection and analysis of incident response data.
Responsibilities
- Monitor security alerts and events to identify potential threats and incidents.
- Perform technical analysis and assessments of cybersecurity-related incidents, including malware analysis, packet-level analysis, and system-level forensic analysis to determine root cause and impact of incidents.
- Collaborate with cross-functional teams to improve our capabilities to effectively detect and respond to security incidents.
- Develop and refine incident response plans, procedures, and playbooks.
- Support the onboarding of new products, data, processes, or tools by identifying requirements by integrating them into operations (processes, playbooks, and training)
- Work with the Detection Engineering team to create custom rulesets to detect and hunt for advanced threat actor tactics, techniques, and procedures (TTPs).
- This position is part of a 24x7x365 operation and may require shift and/or on-call work
Trust is one of TikTok's biggest initiatives, and security is integral to our success. In whatever ways users interact with us — whether they're watching videos on their For You page, interacting with a Live video, or buying products on TikTok Shop — GSO protects their data and privacy, so they can have a secure and trustworthy experience.
As a Security Engineer, you will be a member of TikTok’s enterprise Threat Detection and Response team. The Threat Detection and Response team is responsible for 24x7 monitoring of multiple security-related information sources to manage incidents related to cyber, privacy, and data protection for TikTok data, infrastructure, and products. The Threat Detection and Response team will regularly survey TikTok's networks for signs of a breach, malware, or unauthorized access. Additionally, the Threat Detection and Response team is responsible for developing and maintaining incident response plans, playbooks and procedures. Finally, the Threat Detection and Response team will be responsible for data collection and analysis of incident response data.
Responsibilities
- Monitor security alerts and events to identify potential threats and incidents.
- Perform technical analysis and assessments of cybersecurity-related incidents, including malware analysis, packet-level analysis, and system-level forensic analysis to determine root cause and impact of incidents.
- Collaborate with cross-functional teams to improve our capabilities to effectively detect and respond to security incidents.
- Develop and refine incident response plans, procedures, and playbooks.
- Support the onboarding of new products, data, processes, or tools by identifying requirements by integrating them into operations (processes, playbooks, and training)
- Work with the Detection Engineering team to create custom rulesets to detect and hunt for advanced threat actor tactics, techniques, and procedures (TTPs).
- This position is part of a 24x7x365 operation and may require shift and/or on-call work
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Tags: DART Incident response Malware Monitoring Privacy Threat detection TTPs
Perks/benefits: Team events
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Security Specialist jobsSecurity Operations Engineer jobsSenior Security Analyst jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsCybersecurity Editor jobsCybersecurity Content Editor jobsSenior Information Security Analyst jobsInformation Security Manager jobsCyber Security Specialist jobsSenior Network Security Engineer jobsIT Security Analyst jobsSenior Information Security Engineer jobsChief Information Security Officer jobsSecurity Consultant jobsInformation System Security Officer (ISSO) jobsSenior Product Security Engineer jobsIT Security Engineer jobsSecurity Specialist jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Cyber Security Engineer jobsSenior Software Engineer jobsSecurity Operations Analyst jobsSenior IT Auditor jobs
EDR jobsSaaS jobsCEH jobsEncryption jobsJava jobsSplunk jobsThreat detection jobsTop Secret jobsSDLC jobsTerraform jobsMalware jobsIDS jobsRMF jobsIPS jobsSQL jobsSOC 2 jobsFinance jobsDocker jobsForensics jobsCompTIA jobsOWASP jobsIntrusion detection jobsActive Directory jobsVPN jobsITIL jobs
HIPAA jobsAnsible jobsGIAC jobsClearance Required jobsCRISC jobsIT infrastructure jobsTCP/IP jobsDoDD 8570 jobsOSCP jobsMITRE ATT&CK jobsSOAR jobsZero Trust jobsBanking jobsSOX jobsIndustrial jobsData Analytics jobsJira jobsDNS jobsCCSP jobsNIST 800-53 jobsGCIH jobsCISO jobsArtificial Intelligence jobsUNIX jobsJavaScript jobs