Tiktok - New York, NY

posted 14 days ago

Full-time - Manager
New York, NY
Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services

About the position

The Cloud Security Operations Specialist Lead at TikTok will oversee a team responsible for the design, engineering, and deployment of tools to monitor and secure the company's global cloud infrastructure. This role focuses on ensuring the security of U.S. user data through effective cloud security practices, incident response, and collaboration with various teams within the organization. The position requires a strong understanding of cloud security standards and the ability to implement and manage security solutions in a multi-cloud environment.

Responsibilities

  • Support the development and execution of enterprise-wide Cloud security program
  • Define and manage security controls for a multi-cloud architecture
  • Configure, maintain, deploy, and write rules in Cloud security tools (CSPM, CWPP, CNAPP)
  • Design and implement 3rd party and cloud-native tooling to meet defined requirements
  • Develop standard operating procedures and trainings for each technology
  • Architect and continuously improve security technology stack, process and procedures, support model and cross-function interactions utilizing automation where possible
  • Review and assess utilization of Cloud security tooling
  • Promote and drive adoption of Cloud security tooling across the enterprise
  • Partner across the Security Operations team to respond to cybersecurity incidents & develop and report Cloud security coverage metrics and remediation plans
  • Define procedures to validate the effectiveness of the design, deployment, and management of security controls that aim to maintain confidentiality, integrity, and availability of Cloud networks and technology platforms.

Requirements

  • 4+ years of direct management experience
  • Strong understanding of Cloud security industry standards and best practices (CSA CCM, CIS benchmarks, etc.)
  • TCP, IP, HTTP and basic application architecture
  • Operations and maintenance of Cloud security technology stack (CSPM, CWPP, CIEM, Cloud native features like GuardDuty, AWS Config, Amazon Inspector, etc.)
  • Proficient use of Linux, MacOS, and Windows Operating System tools (such as curl, wget, nslookup, etc)
  • Working proficiency with at least one scripting language (Python, Javascript, Java, etc.) along with hands-on experience with proxies, load balancers, virtual machines, containers, and/or serverless technologies
  • Demonstrated ability to quickly assimilate new information and remain current on new developments in cybersecurity capabilities and industry knowledge.

Nice-to-haves

  • 5+ years of direct management experience
  • 5 years of experience operating in at least one cloud provider, preferably GCP, AWS, or OCI
  • CISSP, SSCP, cloud provider certifications from AWS, GCP, OCI, or applicable experience in the Information Security field
  • Experience in a multi-cloud or hybrid cloud environment
  • Hands-on experience with SecDevOps technologies including Docker, Kubernetes, Jenkins, Terraform, and/or Cloudformation
  • Experience with other security technology tools (SIEM, SOAR, EDR, WAF, Anti-DDOS, IDS/IPS, DLP, ZTA, PAM, Secrets Management)

Benefits

  • 100% premium coverage for employee medical insurance
  • Approximately 75% premium coverage for dependents
  • Health Savings Account (HSA) with a company match
  • Dental and Vision insurance
  • Short/Long term Disability insurance
  • Basic Life, Voluntary Life and AD&D insurance plans
  • Flexible Spending Account (FSA) Options
  • 10 paid holidays per year
  • 17 days of Paid Personal Time Off (PPTO)
  • 10 paid sick days per year
  • 12 weeks of paid Parental leave
  • 8 weeks of paid Supplemental Disability
  • Mental and emotional health benefits through EAP and Lyra
  • 401K company match
  • Gym and cellphone service reimbursements
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service