Senior Security Researcher, Global Security Organisation - TikTok, Singapore
Singapore, Singapore
Team Introduction
The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk. In order to enhance collaboration and cross-functional partnerships, our organization follows a hybrid work schedule that requires employees to work in the office for 3 days a week, as directed by their manager. We regularly review our hybrid work model, and the specific requirements may change at any time.
Overview
As part of the Threat Management, Incident Response & Investigation (TMIRI) team, you will join the Product Security Incident Response (ProdSecIR) team, supporting TikTok's Threat Detection and Response (TDR) team. ProdSecIR manages product security incidents, develops internal security initiatives, investigates and validates reported vulnerabilities.
Responsibilities
- Be the incident commander for product security related incidents when they occur.
- Analyze incidents to identify key issues and coordinate workstreams with global cross-functional teams for rapid resolution.
- Identify gaps in TikTok's defences and work with the relevant stakeholders to address them.
- Recommend best-practice security solutions and oversee remediation efforts with relevant teams.
- Validate product vulnerabilities and perform variant analysis to uncover related security weaknesses.
- Apply deep expertise in security vulnerabilities to strengthen product security.
- Conduct research and penetration testing to discover security gaps and potential exploits.
- Identify systemic vulnerabilities and drive remediation efforts with the appropriate teams.
- Utilize strong coding skills to develop and automate security tools, enhancing detection and protection mechanisms.
The Global Security Organization provides industry-leading cyber-security and business protection services to TikTok globally. Our organization employs four principles that guide our strategic and tactical operations. Firstly, we Champion Transparency & Trust by leading the charge in organizational transparency, prioritizing customer trust, and placing user needs first. Secondly, we aim to maintain Best in Class Global Security by proactively identifying and reducing risks while enabling innovative product development. We constantly work towards a sustainable world-class security capability. Thirdly, we strive to be a Business Catalyst & Enabler by embodying the DNA of technical innovation and ensuring our Global Security operations are fast and agile. Finally, we Drive Empowered & Risk-Informed Decision Making by providing our leaders with the necessary information to make agile decisions based on risk. In order to enhance collaboration and cross-functional partnerships, our organization follows a hybrid work schedule that requires employees to work in the office for 3 days a week, as directed by their manager. We regularly review our hybrid work model, and the specific requirements may change at any time.
Overview
As part of the Threat Management, Incident Response & Investigation (TMIRI) team, you will join the Product Security Incident Response (ProdSecIR) team, supporting TikTok's Threat Detection and Response (TDR) team. ProdSecIR manages product security incidents, develops internal security initiatives, investigates and validates reported vulnerabilities.
Responsibilities
- Be the incident commander for product security related incidents when they occur.
- Analyze incidents to identify key issues and coordinate workstreams with global cross-functional teams for rapid resolution.
- Identify gaps in TikTok's defences and work with the relevant stakeholders to address them.
- Recommend best-practice security solutions and oversee remediation efforts with relevant teams.
- Validate product vulnerabilities and perform variant analysis to uncover related security weaknesses.
- Apply deep expertise in security vulnerabilities to strengthen product security.
- Conduct research and penetration testing to discover security gaps and potential exploits.
- Identify systemic vulnerabilities and drive remediation efforts with the appropriate teams.
- Utilize strong coding skills to develop and automate security tools, enhancing detection and protection mechanisms.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
9
0
0
Category:
Research Jobs
Tags: Agile Exploits Incident response Pentesting Product security Threat detection Vulnerabilities
Perks/benefits: Transparency
Region:
Asia/Pacific
Country:
Singapore
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Product Security Engineer jobsInformation Security Specialist jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSystems Engineer jobsSystems Administrator jobsSenior Information Security Analyst jobsSenior Network Security Engineer jobsInformation Security Manager jobsCyber Security Specialist jobsIT Security Analyst jobsIT Security Engineer jobsSecurity Consultant jobsSecurity Specialist jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Cyber Security Engineer jobsSenior Information Security Engineer jobsSenior Product Security Engineer jobsCyber Threat Intelligence Analyst jobsSecurity Operations Analyst jobsCyber Security Architect jobsCybersecurity Specialist jobs
Encryption jobsEDR jobsTS/SCI jobsBash jobsJava jobsThreat detection jobsSplunk jobsTerraform jobsIDS jobsMalware jobsSQL jobsIPS jobsSDLC jobsTop Secret jobsRMF jobsSOC 2 jobsFinance jobsForensics jobsDocker jobsGIAC jobsActive Directory jobsCompTIA jobsIntrusion detection jobsOWASP jobsITIL jobs
VPN jobsAnsible jobsHIPAA jobsIT infrastructure jobsTCP/IP jobsOSCP jobsData Analytics jobsDoDD 8570 jobsCRISC jobsClearance Required jobsMITRE ATT&CK jobsBanking jobsCCSP jobsUNIX jobsNIST 800-53 jobsZero Trust jobsSOAR jobsEndpoint security jobsSAP jobsDNS jobsSOX jobsMachine Learning jobsJavaScript jobsCISO jobsIndustrial jobs