Threat Intelligence Engineer, Security Assurance

Responsibilities

About the Company
Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create content.

Why Join Us
Creation is the core of ByteDance's purpose. Our products are built to help imaginations thrive. This is doubly true of the teams that make our innovations possible.
Together, we inspire creativity and enrich life - a mission we aim towards achieving every day.
To us, every challenge, no matter how ambiguous, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always.
At ByteDance, we create together and grow together. That's how we drive impact - for ourselves, our company, and the users we serve.
Join us.

About the Team
The Security Assurance Team is researching offensive and defensive technology and skills to continuously improve the company's fundamental security, data security, and business security levels. We strive to minimize the impact of 0-day vulnerabilities and incidents. Our team provides a range of security services, including SDLC, vulnerability management, extreme critical risks discovery, supply chain security, network defense, red teaming, underground market crackdown, threat detection, emergency response, threat intelligence, and information security investigation.

Responsibilities
- Responsible for analysis, investigation and traceability of underground/blackmarket industry cases.
- Perform real-time analysis and trending of security log data from various security devices and systems, leveraging on in-depth analysis of understand industry exploitation chains and knowledge of most underground sources in non-China areas.
- Respond to user incident reports and evaluates the type and severity of security events.
- Maintain data sources feeding the log monitoring system, develop and maintain detection and alerting rules
- Identify recurring security issues and risks and develops mitigation plans and recommends process improvements.
- Constantly keep up with the latest attacks in the underground industry, identify business logic risks and independently conduct traceability or investigation.
- In-depth understanding of various business risks such as eCommerce/Payment/Advertisment business with the ability to lead discovery, data analysis, investigation, evidence collection, traceability analysis and communication with business teams.

Qualifications

Minimum Qualifications
- More than 3 years of security or anti-fraud work experience with high learning ability.
- Familiar with the various attack methods of the underground industry, experience in penetration testing and data analysis is preferred.
- Good data analysis skills and observation, able to accurately describe and identify attack patterns, and understand key points from large datasets.
- Good communication and coordination skills, strong analytical skills, process management skills, experience in cross-team cooperation, strong execution.

Preferred Requirements
- Automatic data gathering and analysis tools development and scripting skills are preferred.
- Reversing engineering is preferred.

ByteDance is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At ByteDance, our mission is to inspire creativity and enrich life. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.