Team Introduction
:The mission of TikTok's Global Security Organization is to build and earn trust by reducing risk and securing our businesses and products.
Also known as GSO, this team is the foundation of our efforts to keep TikTok safe, secure, and operating at scale for over 1 billion people around the world.
We work to ensure that the TikTok platform is safe and secure, that our users' experience and their data remains safe from external or internal threats, and that we comply with global regulations wherever TikTok operates.
Trust is one of TikTok's biggest initiatives, and security is integral to our success.
In whatever ways users interact with us — whether they're watching videos on their For You page, interacting with a Live video, or buying products on TikTok Shop — GSO protects their data and privacy, so they can have a secure and trustworthy experience.
This is a role within Global Security's Insider Trust team.
In this role, you are responsible for the strategic oversight, leadership, and technical direction of the detection engineering strategy that supports Insider Trust's discovery, detection, investigation, and response workflows.
There are two major deliverables for the team, automation development and detection engineering.
Automation development focuses on ideating and creating tooling solutions and automated workflows to support investigation analysts and remediate crucial Insider Trust issues.
Detection engineering focuses on the creation and maintenance of proactive logic to proactively identify inside risks with high fidelity and at scale to prevent harm to users and to the company.
This role will work cross functionally with all business organizations to develop team specific detections to ensure - Lead the strategic vision for Insider Trust engineers and analysts that range from Junior to Senior levels, to build out detections, tools, and logging infrastructure via Python, SQL, Go, Terraform, etc.
Create detections to find instances of insider threat.
- Act as a force multiplier across the business by optimizing processes and gaining alignment across stakeholders.
A Sr. Detection Engineer will be responsible for raising the productivity and efficiency of analysts doing manual investigations and remediations.
- Ideate, drive, and deliver on a technical roadmap to build compliance, detection, and engineering solutions for the Insider Trust organization
- Help stakeholders identify relevant use-cases for insider risk while mitigating risk for users and the business.
- Maintain and support compliant data flows and automation access to allow for interoperability across various business regions.
- Be the go-to technical subject matter expert on security, compliance, and assurance topics that touch insider risk teams.
- Ability to dive into work and directly contribute to technical projects via root cause analyses, code reviews, architecture design, as well as committing code yourself.
- Grow and foster a team of high performing engineers and analysts to achieve positive business outcomes that protect both our users and the company.
- Recruit and hire top technical talent while ensuring a diverse candidate pool.
Consistently raise the bar on talent across the team.
- Work with cross functional teams globally to ensure alignment, collect feedback on automations, and deploy solutions to get cross functional adoption.
Minimum Qualifications:
- Bachelor's degree or industry equivalent work experience in Computer Science or Computer Engineering
- 5+ years of industry experience as an engineer
- Proficiency in Python
- Understanding of current industry data analytical capabilities and shortcomings
- Strong technical documentation and reporting skills
- Ability to handle confidential information with discretion Preferred Qualifications:
- Experience working in a Security Team
- SQL Proficiency
- Working knowledge of cloud platforms (.
OCI, GCP, AWS, etc)
- Knowledge of social media processes and products, as well as current gaps that can be exploited by threat actors
- Knowledge of online deceptive and manipulative behavior.
Knowledge of the signals of specific threat actors, their cross-platform tactics, and how they evolve or change over time.
- An individual that will thrive on a fast paced and high performing team with a strong drive to learn
- Demonstrates excellent organizational, time management, and problem-solving skills
- Works well under pressure and within time/budget constraints to solve problems or meet objectives
- Ability to communicate technical concepts to a broad range of technical and non-technical staff