Tiktok - Mountain View, CA

posted 16 days ago

Full-time - Senior
Mountain View, CA
Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services

About the position

The Cloud Security Operations Specialist Lead at TikTok will oversee a team responsible for the design, engineering, and deployment of security tools and technologies to monitor and protect the company's global cloud infrastructure. This role involves ensuring proper access, validating asset inventory, and preventing cloud-based vulnerabilities. The lead will also collaborate with various security teams to apply security measures and serve as a subject matter expert in cloud security, conducting architecture reviews and providing training.

Responsibilities

  • Support the development and execution of enterprise-wide Cloud security program
  • Define and manage security controls for a multi-cloud architecture
  • Configure, maintain, deploy, and write rules in Cloud security tools (CSPM, CWPP, CNAPP)
  • Design and implement 3rd party and cloud-native tooling to meet defined requirements
  • Develop standard operating procedures and trainings for each technology
  • Architect and continuously improve security technology stack, process and procedures, support model and cross-function interactions utilizing automation where possible
  • Review and assess utilization of Cloud security tooling
  • Promote and drive adoption of Cloud security tooling across the enterprise
  • Partner across the Security Operations team to respond to cybersecurity incidents & develop and report Cloud security coverage metrics and remediation plans
  • Define procedures to validate the effectiveness of the design, deployment, and management of security controls that aim to maintain confidentiality, integrity, and availability of Cloud networks and technology platforms.

Requirements

  • 4+ years of direct management experience
  • Strong understanding of Cloud security industry standards and best practices (CSA CCM, CIS benchmarks, etc.)
  • Operations and maintenance of Cloud security technology stack (CSPM, CWPP, CIEM, Cloud native features like GuardDuty, AWS Config, Amazon Inspector, etc.)
  • Proficient use of Linux, MacOS, and Windows Operating System tools (such as curl, wget, nslookup, etc)
  • Working proficiency with at least one scripting language (Python, Javascript, Java, etc.) along with hands-on experience with proxies, load balancers, virtual machines, containers, and/or serverless technologies
  • Demonstrated ability to quickly assimilate new information and remain current on new developments in cybersecurity capabilities and industry knowledge.

Nice-to-haves

  • 5+ years of direct management experience
  • 5 years of experience operating in at least one cloud provider, preferably GCP, AWS, or OCI
  • CISSP, SSCP, cloud provider certifications from AWS, GCP, OCI, or applicable experience in the Information Security field
  • Experience in a multi-cloud or hybrid cloud environment
  • Hands-on experience with SecDevOps technologies including Docker, Kubernetes, Jenkins, Terraform, and/or Cloudformation
  • Experience with other security technology tools (SIEM, SOAR, EDR, WAF, Anti-DDOS, IDS/IPS, DLP, ZTA, PAM, Secrets Management)

Benefits

  • Paid parental leave
  • Health savings account
  • AD&D insurance
  • Paid holidays
  • Disability insurance
  • Health insurance
  • Dental insurance
  • Flexible spending account
  • RSU
  • Paid time off
  • Parental leave
  • Employee assistance program
  • Vision insurance
  • 401(k) matching
  • Paid sick time
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service