Enable job alerts via email!
Privacy Engineer (RED team) - PDPO (Singapore)
TikTok
Singapore
On-site
USD 90,000 - 130,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
A leading company is seeking a Privacy and Data Protection Specialist to join their team. This role involves conducting technical assessments, collaborating with various teams to integrate privacy measures, and researching emerging threats. Ideal candidates will have extensive experience in web security, penetration testing, and a deep understanding of privacy concepts.
Qualifications
- 3+ years experience in web security or data security.
- Experience in Penetration Testing or Red Team exercises.
- Ability to analyze complex systems for privacy risks.
Responsibilities
- Conduct in-depth technical assessments to identify privacy issues.
- Collaborate with engineering and product teams for privacy measures.
- Research and analyze emerging privacy threats and develop strategies.
Skills
Job description
Responsibilities
About the team: PDPO (Privacy and Data Protection Office) leads, supervises, and empowers TikTok's privacy initiatives in an industry-leading manner. This team specializes in privacy risks and consults across the company to implement safeguards and mitigations, ensuring user privacy across TikTok's products and platforms.
What you’ll do:
- Conduct in-depth technical assessments to identify privacy issues in systems, products, and services.
- Collaborate with engineering and product teams to integrate privacy-preserving security measures throughout the software development lifecycle (SDLC).
- Research and analyze emerging privacy threats, develop mitigation strategies, and testing methodologies to protect user data.
- Automate privacy assessments using tooling, scripts, and frameworks to improve scalability and efficiency.
- Develop practices, processes, mechanisms, and documentation for privacy activities, internally and with working groups.
Knowledge, Skills & Abilities:
- Strong fundamentals in Computer Science, Security engineering, and Privacy engineering.
- Deep understanding of privacy concepts such as data minimization, anonymization, and secure data processing.
- Experience in penetration testing / red teaming.
- Proficiency in manual secure code review to identify vulnerabilities and data leakage risks.
- Ability to collaborate, prioritize, and work independently.
- Excellent communication skills for cross-functional collaboration with engineering, legal, and compliance teams.
Qualifications
Minimum Qualifications:
- 3+ years experience in web security or data security.
- Experience in Penetration Testing or Red Team exercises.
- Ability to analyze complex systems for privacy risks and recommend actions.
Preferred Qualifications:
- Contributions to the security or privacy community (research, blogging, presentations, bug bounties, CVEs).
- Experience with testing frameworks like MITRE ATT&CK.
- 2+ years scripting experience including code maintenance and review.
- Experience with GDPR, CCPA, or similar privacy regulations.
- Experience with DAST or SAST tools.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
