Technical Validation Specialist, Enterprise to Edge - Global Security Organisation

Responsibilities

The mission of TikTok's Global Security Organization is to build and earn trust by reducing risk and securing our businesses and products. Also known as "GSO", this team is the foundation of our efforts to keep TikTok safe, secure, and operating at scale for over 1 billion people around the world. We work to ensure that the TikTok platform is safe and secure, that our users' experience and their data remains safe from external or internal threats, and that we comply with global regulations wherever TikTok operates.

Trust is one of TikTok's biggest initiatives, and security is integral to our success. In whatever ways users interact with us - whether they're watching videos on their For You page, interacting with a Live video, or buying products on TikTok Shop - GSO protects their data and privacy, so they can have a secure and trustworthy experience.

The GSO provides industry-leading security and privacy services to Bytedance, guided by four principles: trust and transparency, business enablement, risk-informed decision-making, and proactive risk reduction. We strive to build sustainable, world-class security capabilities.

Security Tools Operations and Validation team's responsibilities include designing and implementing IT security solutions that address the organization's needs, assessing risks and vulnerabilities, and developing strategies to mitigate them, validation of security technical controls.

The SecOps Validation (STOV) team is responsible for safeguarding TikTok's infrastructure through ownership of tools, technologies, and processes that enable strong security operations. STOV drives technical validation, engineering enhancements, and the deployment, configuration, and maintenance of security technologies across multiple domains. Within STOV, the Enterprise to Edge (E2E) team focuses on delivering full-stack security coverage, from enterprise endpoints to edge and CDN environments providing technical support and ensuring end-to-end protection across the entire security landscape, for both office and production networks.

Responsibilities
- Define measurable security controls across enterprise-to-edge environments (endpoints, hosts, networks, email, CDN, and IoT) aligned to global frameworks.
- Conduct offensive security assessments to simulate real-world attack scenarios and validate the effectiveness of detection and response controls.
- Design and implement control validation processes using existing infrastructure or new technologies where required.
- Work with cross-functional teams to identify control gaps and assist those teams with plans for remediation.

Qualifications

Minimum Qualifications
- Strong expertise across the full enterprise-to-edge security stack, including endpoints, networks, hosts, email, application security, CDN, and other critical security domains.
- Solid understanding of email, network, host, and CDN security concepts in corporate and production environments.
- Experience simulating advanced threat actor behavior in production-like environments across enterprise-to-edge systems.
- Proficiency in at least one programming/scripting language (e.g., Python, Java, Go, Bash, C/C++), with strong debugging and automation skills.
- Deep knowledge of adversary TTPs aligned with MITRE ATT&CK, including EDR evasion and post-exploitation techniques.
- Hands-on experience with Breach-and-Attack Simulation (BAS) frameworks and tools in large-scale enterprise and edge environments.

Preferred Qualifications
- A bachelor's degree in computer science, information technology, cybersecurity, or a related field is usually required.
- Rich experience in pentesting, red team operation, application security, vulnerability exploit etc
- Experience in mobile, web application SDLC will be a plus
- Hands-on experience with security automation and testing tools (e.g., Selenium, Ansible, Jenkins, Chef, Puppet).

Job Information

[For Pay Transparency] Compensation Description (annually)

The base salary range for this position in the selected city is $147200 - $269800 annually.

Compensation may vary outside of this range depending on a number of factors, including a candidate's qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.

Benefits may vary depending on the nature of employment and the country work location. Employees have day one access to medical, dental, and vision insurance, a 401(k) savings plan with company match, paid parental leave, short-term and long-term disability coverage, life insurance, wellbeing benefits, among others. Employees also receive 10 paid holidays per year, 10 paid sick days per year and 17 days of Paid Personal Time (prorated upon hire with increasing accruals by tenure).

The Company reserves the right to modify or change these benefits programs at any time, with or without notice.