Talent.com
Identity and Access Management Senior Analyst - Global Security Organization

Identity and Access Management Senior Analyst - Global Security Organization

TikTokNew York, NY, US
job_description.job_card.variable_hours_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Overview

Identity and Access Management Senior Analyst - Global Security Organization

TikTok is seeking a Senior Analyst for Access Operations to be part of the Product Trust and Access Governance team and will be responsible for overseeing operations and management of data access and data transfer requests to validate compliance with relevant company policy, geographical regulation, contractual commitments, and confidentiality requirements. As a direct report to the Identity and Access Management lead within the Global Security Organization, you are part of a team that manages the security of TikTok data through access management processes and controls across the entire data lifecycle, from creation to destruction. You will oversee policies and procedures for managing access and will ingest organizational policies to create enforcement mechanisms. This will entail understanding requirements, designing controls, and ultimately managing the on-going operation of those controls.

Trust is one of TikTok's biggest initiatives, and security is integral to our success. In whatever ways users interact with us — whether they're watching videos on their For You page, interacting with a Live video, or buying products on TikTok Shop — GSO protects their data and privacy, so they can have a secure and trustworthy experience.

Responsibilities

  • Build and review technical and functional requirements for in-house or external technologies to support access management and assurance needs
  • Design and implement access management and validation programs (people, process, and technology) to mitigate security threats and risks related to access that may impact business data through a holistic global program-oriented approach
  • Design and implement the access review process, ensuring that access is reviewed regularly, both for appropriateness of access as well as privilege levels for all users
  • Guide the team in developing use cases and integrating access management technologies with related cybersecurity technologies (e.g., security incident and event management, data classification, vulnerability management, identity management, authentication requirements)
  • Create reporting and response execution for Access Management processes, including metrics coverage, accuracy, and usability to inform executive strategy; draft and execute processes that may require expedited cross-team collaboration
  • Deliver projects in alignment with data security and data regionalization guidelines across global regions; stay up-to-date with evolving data protection and regionalization requirements (e.g., GDPR, cross-border transfer requirements) and ensure compliance through implemented mechanisms to monitor, respond, and report on inappropriate data access events
  • Provide input in cross-functional Legal and Engineering engagements where security operations are required to advance Global Security-IAM owned projects; collaborate with engineers to assess new process requests for adherence to data privacy and security requirements; guide access standards and modifications to new or existing access policies or roles

Qualifications

MINIMUM QUALIFICATIONS

  • Demonstrate ability to quickly assimilate to new knowledge and remain current on new developments in access management tools and capabilities and industry knowledge
  • In-depth experience in designing and deploying access management technologies and validation controls in enterprise-class organizations, including : Access monitoring & validation, remediation, escalation, role-based access policies based on principle of least privilege, access permission retrieval and analysis, configuration of access permissions / roles, provisioning, modifying, and de-provisioning account access
  • In-depth knowledge of data privacy regulations and standards, such as GDPR or other global data protection laws
  • Strong understanding of : Data security and access controls (ABAC, RBAC, PBAC, PAM), data security principles and global data transfer mechanisms
  • Strong critical thinking and process-driven mindset to standardize key security and privacy solutions

    • PREFERRED QUALIFICATIONS

  • Bachelor's Degree or industry equivalent work experience
  • Minimum 5 years experience in cybersecurity
  • Relevant certifications such as CISA or CISSP
  • Understanding of access controls, data security across multiple geographical regions, Identity and Access Management including writing scripts, configuring tools, working with APIs and databases (e.g. MYSQL, Redis)
  • Strong communication skills to collaborate with cross-functional teams, influence priorities, and align stakeholders
  • Ability to adapt to changing requirements or non-standard situations

    • About TikTok

    TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, with offices worldwide.

    Why Join Us

    We aim to inspire creativity, foster curiosity and collaboration, and pursue meaningful impact in a fast-growing tech company. We value curiosity, humility, and an "Always Day 1" mindset.

    Diversity & Inclusion

    TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. We celebrate diverse voices and strive to reflect the communities we reach.

    TikTok Accommodation

    TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities or other protected needs. For assistance, please reach out to us at the provided accommodation contact.

    Job Information

  • Compensation : The base salary range for this position in the selected city is $147,200 - $269,800 annually; varies by location and qualifications. Total compensation may include bonuses, incentives, and RSUs.
  • Benefits : Medical, dental, vision, 401(k) with company match, paid parental leave, disability coverage, life insurance, wellbeing benefits, 10 paid holidays, 10 paid sick days, 17 days Paid Personal Time (prorated).
  • Note : The Company reserves the right to modify benefits at any time.

    • Seniority level

  • Associate

    • Employment type

  • Full-time

    • Job function

  • Business Development and Sales

    • Industries

  • Computer and Network Security

    • We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

    J-18808-Ljbffr

    serp_jobs.job_alerts.create_a_job

    Senior Analyst Identity • New York, NY, US