Skip to main contentA logo with &quat;the muse&quat; in dark blue text.
TikTok

Vulnerability Management Senior Analyst

Washington, DC

Responsibilities

TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok has global offices including Los Angeles, New York, London, Paris, Berlin, Dubai, Singapore, Jakarta, Seoul and Tokyo.

Why Join Us
At TikTok, our people are humble, intelligent, compassionate and creative. We create to inspire - for you, for us, and for more than 1 billion users on our platform. We lead with curiosity and aim for the highest, never shying away from taking calculated risks and embracing ambiguity as it comes. Here, the opportunities are limitless for those who dare to pursue bold ideas that exist just beyond the boundary of possibility. Join us and make impact happen with a career at TikTok.

Want more jobs like this?

Get Management jobs in Washington, DC delivered to your inbox every week.

By signing up, you agree to our Terms of Service & Privacy Policy.


The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk.

The Vulnerability Management Senior Analyst is tasked with the day to day activities of the Vulnerability Management Team. They schedule, conduct, and regularly review vulnerability scans, analyzing for key risks and escalating where needed. They should be aware of current policies and procedures and ensure they are being followed properly. The senior analyst should have hands on experience with vulnerability management tools and be able to mentor and advise other team members.

We are working on a hybrid schedule, with an expected 2-3 days a week in office, as designated by your manager. We are continuously reviewing our hybrid-working model and requirements are subject to change at any time.

Responsibilities:
- Continuously log and track remediation activities of discovered vulnerabilities throughout the environment
- Evaluate vulnerabilities based on prioritization criteria
- Investigate persistent vulnerabilities
- Coordinate and communicate with cross-functional teams throughout the VM lifecycle
- Generate and distribute operational-level reports
- Facilitate exception handling and escalation
- Support regulatory compliance monitoring and reporting
- Review and optimize scan templates to ensure complete coverage of environment
- Support treatment and remediation activities with identified points of contact and system owners
- Provide risk analysis for identified vulnerabilities and system change requests
- Develop processes and document procedures for use by other team members and to enhance efficiencies
- Maintain regular communication with Vulnerability Management Lead and organizational management for collaboration, process optimization, tools tuning, and information sharing

Qualifications

Minimum Qualifications:
- Bachelor's Degree or industry equivalent work experience in vulnerability management in a security program
- Approximately 5-7 years of applicable experience
- Hands on operational experience with vulnerability management tools (e.g. Qualys, Nexpose) including the ability to deploy, configure, and run these tools.
- Knowledge of vulnerability scoring systems (e.g. CVSSv3)
- Ability to conduct root cause analysis against vulnerabilities and determine feasible technical solutions.
- Ability to handle large datasets and perform vulnerability analysis
- Ability to work alongside other security functions to determine vulnerability scoring and impact
- Ability to examine issues both strategically and analytically.
- Ability to work collaboratively in a team environment
- Excellent communication skills (verbal and written)
- Strong analytical and problem-solving skills
- Detail oriented, organized, follow up skills with an analytical thought process
- Project management experience

Preferred Qualifications:
- CISSP, CISM, or equivalent certification
- Familiarity with vulnerability management across SaaS and IaaS cloud platforms (e.g., AWS, Google Cloud, etc.)
- Working knowledge/experience with Python, SQL and REST APIs
- Ability to handle ambiguity and collaborate with a global team
- Ability to coach junior staff and contractors

TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

TikTok is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at gprd.accommodations@tiktok.com

#LI-Hybrid

Client-provided location(s): Washington, DC, USA
Job ID: TikTok-7200485961489762616
Employment Type: Other

Perks and Benefits

  • Health and Wellness

    • Health Insurance
    • Dental Insurance
    • Vision Insurance
    • HSA
    • Life Insurance
    • Fitness Subsidies
    • Short-Term Disability
    • Long-Term Disability
    • On-Site Gym
    • Mental Health Benefits
    • Virtual Fitness Classes
  • Parental Benefits

    • Fertility Benefits
    • Adoption Assistance Program
    • Family Support Resources
  • Work Flexibility

    • Flexible Work Hours
    • Hybrid Work Opportunities
  • Office Life and Perks

    • Casual Dress
    • Snacks
    • Pet-friendly Office
    • Happy Hours
    • Some Meals Provided
    • Company Outings
    • On-Site Cafeteria
    • Holiday Events
  • Vacation and Time Off

    • Paid Vacation
    • Paid Holidays
    • Personal/Sick Days
    • Leave of Absence
  • Financial and Retirement

    • 401(K) With Company Matching
    • Performance Bonus
    • Company Equity
  • Professional Development

    • Promote From Within
    • Access to Online Courses
    • Leadership Training Program
    • Associate or Rotational Training Program
    • Mentor Program
  • Diversity and Inclusion

    • Diversity, Equity, and Inclusion Program
    • Employee Resource Groups (ERG)

Company Videos

Hear directly from employees about what it is like to work at TikTok.

This job is no longer available.

Search all jobs