Privacy Engineer (Red Team) - PDPO (Singapore)

TikTok

4.5

(6)

Singapore

Why you should apply for a job to TikTok:

4.5/5 in overall job satisfaction

4.5/5 in supportive management

100% say women are treated fairly and equally to men

100% would recommend this company to other women

100% say the CEO supports gender diversity

Ratings are based on anonymous reviews by Fairygodboss members.

Employee well-being is supported via hybrid work, short-term counseling through our EAP and a premium subscription to Headspace.

We embrace diversity across all dimensions and provide employees with 9 employee resource groups globally, including our WOMEN ERG.

Comprehensive parental leave policy as well as fertility treatment through healthcare providers with a $20,000 lifetime maximum.

#7407379317502921011

Position summary

us.

About the Team
PDPO(Privacy and Data Protection Office) is the organization to lead, supervise, and empower all TikTok's privacy work in an accountable and industry leading way. This team is the expert in the landscape of privacy risks and passionate about consulting across the company on implementing the proper safeguards and technical mitigations to ensure that our users' privacy is honored across the TikTok's products and platforms.

What you'll do:

Conduct technical assessments focused on finding privacy issues in internal and external facing systems, products, and services.
Partner with Engineering teams to optimize SDLC testing.
Support the development of practices, processes, mechanisms, and the documentation for these activities, both internally and with working groups.
Build tooling to automate portions of assessments

Knowledge, Skills & Abilities:

Strong Computer Science, Security engineering and Privacy engineering fundamentals
Able to collaborate, prioritize duties, and work well on your own
Excellent interpersonal skills with a high attention to detail

Qualifications

Minimum Qualifications:

3+ years work experience in web security or data security
Experience in Penetration Testing or Red Team exercises
Ability to understand and apply privacy foundational concepts

Preferred Qualifications:

Experience making contributions to the security or privacy community, such as public research, blogging, presentations, bug bounties, CVEs, etc.
2+ years work experience with scripting language including code maintenance and review
Experience implementing or assessing the implementation of GDPR, CCPA, or equivalent privacy regulation
Experience with tools used to perform Dynamic Application Security Testing (DAST) or Static Application Security Testing (SAST)
Experience with common testing frameworks, such as the MITRE ATT&CK framework

TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

#LI-DC4