Attack Surface Management Lead - Global
Singapore, Singapore
About TikTok
TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.
Why Join Us
Creation is the core of TikTok's purpose. Our products are built to help imaginations thrive. This is doubly true of the teams that make our innovations possible. Together, we inspire creativity and enrich life - a mission we aim towards achieving every day. To us, every challenge, no matter how ambiguous, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always. At TikTok, we create together and grow together. That's how we drive impact-for ourselves, our company, and the users we serve. Join us.
Team Introduction
The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk. In order to enhance collaboration and cross-functional partnerships, our organization follows a hybrid work schedule that requires employees to work in the office for 3 days a week, as directed by their manager. We regularly review our hybrid work model, and the specific requirements may change at any time.
Responsibilities
- Lead a team of vulnerability researchers to scan, evaluate, and remediate attack surfaces to improve security postures
- Monitor and analyze emerging cyber threats, vulnerabilities, and exploits relevant to our infrastructure and products.
- Conduct research and analysis of reports from Bug Bounty program, stay up to date with current vulnerabilities, provide detailed risk analysis and potential impact
- Analyze, assess, compile, and prioritize vulnerabilities to document and communicate mitigation recommendations
- Collaborate with cross-functional software engineering teams in developing products and services for delivering security assurance.
TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.
Why Join Us
Creation is the core of TikTok's purpose. Our products are built to help imaginations thrive. This is doubly true of the teams that make our innovations possible. Together, we inspire creativity and enrich life - a mission we aim towards achieving every day. To us, every challenge, no matter how ambiguous, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always. At TikTok, we create together and grow together. That's how we drive impact-for ourselves, our company, and the users we serve. Join us.
Team Introduction
The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk. In order to enhance collaboration and cross-functional partnerships, our organization follows a hybrid work schedule that requires employees to work in the office for 3 days a week, as directed by their manager. We regularly review our hybrid work model, and the specific requirements may change at any time.
Responsibilities
- Lead a team of vulnerability researchers to scan, evaluate, and remediate attack surfaces to improve security postures
- Monitor and analyze emerging cyber threats, vulnerabilities, and exploits relevant to our infrastructure and products.
- Conduct research and analysis of reports from Bug Bounty program, stay up to date with current vulnerabilities, provide detailed risk analysis and potential impact
- Analyze, assess, compile, and prioritize vulnerabilities to document and communicate mitigation recommendations
- Collaborate with cross-functional software engineering teams in developing products and services for delivering security assurance.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
3
0
0
Category:
Leadership Jobs
Tags: Agile Exploits Risk analysis Vulnerabilities
Perks/benefits: Transparency
Region:
Asia/Pacific
Country:
Singapore
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Systems Security Officer jobsInformation System Security Officer jobsInformation Security Officer jobsSenior Cybersecurity Engineer jobsSenior Cloud Security Engineer jobsInformation Security Manager jobsCyber Security Specialist jobsIT Security Engineer jobsSystems Engineer jobsSenior Network Security Engineer jobsSystems Administrator jobsSenior Information Security Analyst jobsSecurity Consultant jobsSenior Cyber Security Engineer jobsSecurity Specialist jobsIT Security Analyst jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsThreat Intelligence Analyst jobsSenior Penetration Tester jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Information Security Engineer jobsCyber Threat Intelligence Analyst jobs
Encryption jobsTop Secret jobsGDPR jobsSaaS jobsSplunk jobsMalware jobsEDR jobsRMF jobsSDLC jobsBash jobsSQL jobsForensics jobsIDS jobsThreat detection jobsIPS jobsActive Directory jobsFinance jobsDoDD 8570 jobsIntrusion detection jobsITIL jobsCompTIA jobsCRISC jobsDocker jobsTerraform jobsGIAC jobs
OWASP jobsHIPAA jobsSOC 2 jobsClearance Required jobsSANS jobsUNIX jobsCCSP jobsIndustrial jobsSAP jobsOSCP jobsJavaScript jobsVPN jobsTCP/IP jobsAnsible jobsBanking jobsDNS jobsPolygraph jobsSOX jobsData Analytics jobsMachine Learning jobsIT infrastructure jobsJira jobsCISO jobsVMware jobsNIST 800-53 jobs