Senior Security Researcher, Global Security Organisation - TikTok, Singapore
Singapore, Singapore
Team Introduction
The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk. In order to enhance collaboration and cross-functional partnerships, our organization follows a hybrid work schedule that requires employees to work in the office for 3 days a week, as directed by their manager. We regularly review our hybrid work model, and the specific requirements may change at any time.
Overview
As part of the Threat Management, Incident Response & Investigation (TMIRI) team, you will join the Product Security Incident Response (ProdSecIR) team, supporting TikTok's Threat Detection and Response (TDR) team. ProdSecIR manages product security incidents, develops internal security initiatives, investigates and validates reported vulnerabilities.
Responsibilities
- Be the incident commander for product security related incidents when they occur.
- Analyze incidents to identify key issues and coordinate workstreams with global cross-functional teams for rapid resolution.
- Identify gaps in TikTok's defences and work with the relevant stakeholders to address them.
- Recommend best-practice security solutions and oversee remediation efforts with relevant teams.
- Validate product vulnerabilities and perform variant analysis to uncover related security weaknesses.
- Apply deep expertise in security vulnerabilities to strengthen product security.
- Conduct research and penetration testing to discover security gaps and potential exploits.
- Identify systemic vulnerabilities and drive remediation efforts with the appropriate teams.
- Utilize strong coding skills to develop and automate security tools, enhancing detection and protection mechanisms.
The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk. In order to enhance collaboration and cross-functional partnerships, our organization follows a hybrid work schedule that requires employees to work in the office for 3 days a week, as directed by their manager. We regularly review our hybrid work model, and the specific requirements may change at any time.
Overview
As part of the Threat Management, Incident Response & Investigation (TMIRI) team, you will join the Product Security Incident Response (ProdSecIR) team, supporting TikTok's Threat Detection and Response (TDR) team. ProdSecIR manages product security incidents, develops internal security initiatives, investigates and validates reported vulnerabilities.
Responsibilities
- Be the incident commander for product security related incidents when they occur.
- Analyze incidents to identify key issues and coordinate workstreams with global cross-functional teams for rapid resolution.
- Identify gaps in TikTok's defences and work with the relevant stakeholders to address them.
- Recommend best-practice security solutions and oversee remediation efforts with relevant teams.
- Validate product vulnerabilities and perform variant analysis to uncover related security weaknesses.
- Apply deep expertise in security vulnerabilities to strengthen product security.
- Conduct research and penetration testing to discover security gaps and potential exploits.
- Identify systemic vulnerabilities and drive remediation efforts with the appropriate teams.
- Utilize strong coding skills to develop and automate security tools, enhancing detection and protection mechanisms.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
2
0
0
Category:
Research Jobs
Tags: Agile Exploits Incident response Pentesting Product security Threat detection Vulnerabilities
Perks/benefits: Transparency
Region:
Asia/Pacific
Country:
Singapore
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Security Analyst jobsProduct Security Engineer jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsSystems Engineer jobsInformation Security Manager jobsSenior Information Security Analyst jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsIT Security Analyst jobsChief Information Security Officer jobsSecurity Consultant jobsSecurity Specialist jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Cyber Security Engineer jobsSenior Product Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Information Security Engineer jobsThreat Intelligence Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobs
SaaS jobsTS/SCI jobsBash jobsEncryption jobsEDR jobsIDS jobsThreat detection jobsIPS jobsSDLC jobsTerraform jobsMalware jobsSplunk jobsSQL jobsTop Secret jobsFinance jobsForensics jobsDocker jobsRMF jobsIntrusion detection jobsSOC 2 jobsITIL jobsCompTIA jobsOWASP jobsActive Directory jobsGIAC jobs
DoDD 8570 jobsAnsible jobsHIPAA jobsVPN jobsTCP/IP jobsIT infrastructure jobsUNIX jobsData Analytics jobsSOAR jobsCRISC jobsOSCP jobsSANS jobsCCSP jobsSAP jobsMITRE ATT&CK jobsClearance Required jobsJira jobsJavaScript jobsSOX jobsBanking jobsPolygraph jobsMachine Learning jobsIndustrial jobsNIST 800-53 jobsSecurity strategy jobs