Product Security Validation Architect - Global Security Organisation

Team Introduction: The mission of TikTok's Global Security Organization is to build and earn trust by reducing risk and securing our businesses and products. Also known as "GSO", this team is the foundation of our efforts to keep TikTok safe, secure, and operating at scale for over 1 billion people around the world. We work to ensure that the TikTok platform is safe and secure, that our users' experience and their data remains safe from external or internal threats, and that we comply with global regulations wherever TikTok operates.

Trust is one of TikTok's biggest initiatives, and security is integral to our success. In whatever ways users interact with us — whether they're watching videos on their For You page, interacting with a Live video, or buying products on TikTok Shop — GSO protects their data and privacy, so they can have a secure and trustworthy experience.

Security Tools Operations and Validation team's responsibilities include designing and implementing IT security solutions that address the organization's needs, assessing risks and vulnerabilities, and developing strategies to mitigate them, validation of security technical controls.

The role will be responsible for architecture design and optimization, red team validation, metric operation for TikTok Product Security. This role will use solid experience in cybersecurity and architecture to implement deep cyber defense technology for TikTok. Pushing remediation of current GAPs in Secure SDLC is another important function. This role will lead the team to push cross functional teams fixing issues of Secure SDLC and to implement best practice of Secure SDLC in the company. This role will be responsible for TikTok\'s maturity in the Secure SDLC domain.

• Define and validate product security technical controls, design the automation validation architecture
• Work with XFN teams to implement Security by Design and shift-left technical security controls. Define and enforce secure architecture standards and patterns to prevent common security issues, pushing implementation in product and developers
• Accountable for end-to-end solutions to complex SDLC issues, lead the effort of technical coordination and evaluation of remediation.

Minimum Qualifications:

• A bachelor's (master\'s preferred) degree in computer science, information technology, cybersecurity, or a related field is usually required.
• Strong understanding of Secure SDLC with best practice in industry
• Strong experience in Cybersecurity technologies, including penetration tests, security assessment, familiarity with SAST, DAST, SCA security tools etc
• Deep understanding of security architecture, having successful experience of implementing end to end security architecture.
• Solid knowledge about modern internet company security architecture and development stack
• Having experience to threat modeling of complicated business
• Excellent team-working skills are needed. Previous successful working experience through different time zones is a plus.

Preferred Qualifications:

• Rich experience in pentesting, red team operation, application security, vulnerability exploit etc
• Experience in mobile, web application development will be a big plus

TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok\'s global headquarters are in Los Angeles and Singapore, and we also have offices in New York City, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.

Inspiring creativity is at the core of TikTok\'s mission. Our innovative product is built to help people authentically express themselves, discover and connect – and our global, diverse teams make that possible. Together, we create value for our communities, inspire creativity and bring joy - a mission we work towards every day.

We strive to do great things with great people. We lead with curiosity, humility, and a desire to make impact in a rapidly growing tech company. Every challenge is an opportunity to learn and innovate as one team. We\'re resilient and embrace challenges as they come. By constantly iterating and fostering an "Always Day 1" mindset, we achieve meaningful breakthroughs for ourselves, our company, and our users. When we create and grow together, the possibilities are limitless. Join us.

TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.