Security Engineer (Penetration Tester) - Security Assurance

8 Months ago • All levels • Testing

Job Summary

Job Description

ByteDance's Security Assurance team seeks a talented Security Engineer (Penetration Tester) to strengthen their security posture. Responsibilities include designing and conducting penetration testing, identifying vulnerabilities, certifying systems, and collaborating with product teams to improve security practices. The ideal candidate will have a strong background in web application security, mobile app security, cloud security, and relevant programming languages. This role involves identifying and resolving security issues, conducting security reviews, and providing security engineering support.
Must have:
  • Background in Computer Science/Engineering or Information Systems
  • Strong knowledge in web application security, mobile app security, cloud security, and thick client security
  • Solid experience in coding with JavaScript (Node JS), Go, Python, Java, C++, or Rust
  • Good project management skills and teamwork
Good to have:
  • CTF player experience
  • CVEs (excluding vulnerabilities like XSS, CSRF in random CMS)
  • BugBounty experience with reputable statistics in HackerOne, BugCrowd etc.

Job Details

Responsibilities
About ByteDance Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create content. Why Join Us Creation is the core of ByteDance's purpose. Our products are built to help imaginations thrive. This is doubly true of the teams that make our innovations possible. Together, we inspire creativity and enrich life - a mission we aim towards achieving every day. To us, every challenge, no matter how ambiguous, is an opportunity; to learn, to innovate, and to grow as one team. Status quo? Never. Courage? Always. At ByteDance, we create together and grow together. That's how we drive impact - for ourselves, our company, and the users we serve. Join us. About the Security Assurance Team at ByteDance The team is missioned to build infrastructures, platforms and technologies, as well as to support cross-functional teams to protect our users, products and infrastructures. In this team, you'll have a unique opportunity to have first-hand exposure to the strategy of the company in key security initiatives, especially in building scalable and secure-by-design systems and solutions. Our challenges are not your regular day-to-day technical problems; you'll be part of a team that's developing new solutions to new challenges of a kind not previously addressed by big tech. It's working fast, at scale, and we're making a difference. Responsibilities - Continuously design and conduct penetration testing to determine if infrastructure components, systems and applications meet confidentiality, integrity, authentication, availability, authorisation, and nonrepudiation standards in the staging/production environment. - Translate requirements into test plan, write and execute test scripts or codes in line with standards and procedures to determine vulnerability to attacks. - Certify infrastructure components, systems and applications that meet security standards. - To identify risks and actively take ownership to resolve any potential project issues. - Conduct technical security reviews for any new products and feature requirements. - Provide security engineering support to product teams to help identify potential security flaws in the early stages of SDLC. - Collaborate closely with other parts of the security team and product teams to design defense-in-depth controls that limit attackers' ability and improve our security postures. - Continuously conduct security research and strive to innovate.
Qualifications
- Background in Computer Science, Computer Engineering, Information Systems or other STEM disciplines. - Strong knowledge in some of these various disciplines: web application security, mobile app security, cloud security and thick client security. - Solid experience in writing and reviewing code in at least one of the following programming languages: JavaScript (Node JS), Go, Python, Java, C++, Rust. - Good project management skills and focused teamwork. Preferred Requirements - CTF players, live competitions and hacking events experience. - CVEs (excluding vulnerabilities such as XSS, CSRF in random CMS) are preferred. - BugBounty experience with reputable statistics in HackerOne, BugCrowd etc. ByteDance is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At ByteDance, our mission is to inspire creativity and enrich life. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

Similar Jobs

Doola - Finance Analyst

Doola

Bengaluru, Karnataka, India (Remote)
3 Months ago
Argus - Technical Artist (APAC)

Argus

Singapore (Remote)
3 Months ago
Toast - Director of Revenue Accounting - Fintech

Toast

Boston, Massachusetts, United States (On-Site)
2 Weeks ago
Condé Nast - Executive Director, Editorial Performance

Condé Nast

New York, United States (On-Site)
1 Month ago
Coda - Senior/Staff Software Engineer, Custom Commerce

Coda

Bangkok, Thailand (Hybrid)
1 Year ago
Startup Heroes - Software Test Engineer

Startup Heroes

Istanbul, İstanbul, Türkiye (On-Site)
1 Month ago
Dream Sports - Software Development Engineer in Test 3

Dream Sports

Mumbai, Maharashtra, India (On-Site)
3 Months ago
Lytx,  Inc  - Test Engineer III

Lytx, Inc

Bengaluru, Karnataka, India (Hybrid)
7 Months ago
TXK Gaming - QA Testing VR & PC GAMES

TXK Gaming

Düsseldorf, North Rhine-Westphalia, Germany (On-Site)
2 Years ago
endava - Senior Tester

endava

Buenos Aires, Buenos Aires, Argentina (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

smarsh - Creative Consultant

smarsh

United States (Remote)
1 Month ago
Autodesk - Senior Director, People Business Partner, Worldwide Marketing

Autodesk

Montreal, Quebec, Canada (On-Site)
1 Year ago
zoox - Engineering Manager, ML Training Platform

zoox

Foster City, California, United States (Hybrid)
9 Months ago
ZeniMax Media - Global Security Investigations & Executive Protection Sr. Program Manager

ZeniMax Media

Rockville, Maryland, United States (On-Site)
1 Month ago
Amanotes - Game Product Owner

Amanotes

Ho Chi Minh City, Vietnam (On-Site)
2 Months ago
Riot Games - Staff Anti-Cheat Analyst

Riot Games

Los Angeles, California, United States (On-Site)
2 Months ago
SSC Technologies - Credit and Collections Analyst

SSC Technologies

Jacksonville, Florida, United States (Hybrid)
1 Month ago
London stock Exchange - Business Manager

London stock Exchange

Colombo, Western Province, Sri Lanka (On-Site)
1 Month ago
GMS Services - Senior Rendering Developer (OpenGL or DirectX)

GMS Services

Berlin, Berlin, Germany (On-Site)
10 Years ago
Neolytix - Product Marketing Manager

Neolytix

Gurugram, Haryana, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Jobs in Singapore

Riot Games - Motion Graphics Artist Trainee

Riot Games

Singapore (On-Site)
2 Months ago
appier - Director, Organizational & Talent Development

appier

Singapore (On-Site)
1 Month ago
Sandbox VR - Assistant Store Manager

Sandbox VR

Singapore (On-Site)
8 Months ago
Marsh McLennan - Power Risk Engineer (Conventional Power / Renewable)

Marsh McLennan

Singapore (Hybrid)
1 Month ago
bytedance - Cloud Solutions Technical Account Manager

bytedance

Singapore (On-Site)
2 Months ago
OKX - Senior Product Manager, Trading Bot

OKX

Singapore, Singapore (On-Site)
8 Months ago
bytedance - Frontend Software Engineer-Customer Service Platform

bytedance

Singapore (On-Site)
7 Months ago
Zeeco, Inc. - Vendor Development/Sourcing Expeditor

Zeeco, Inc.

Singapore (On-Site)
7 Months ago
Adobe - Employee Relations Consultant

Adobe

Singapore, Singapore (On-Site)
2 Months ago
Illumina - Quality Technician 1

Illumina

Singapore, Singapore (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Testing Jobs

ARHS - Senior System Integration & Performance Testing Engineer

ARHS

Athens, Greece (On-Site)
2 Months ago
Universally Speaking - Japanese Games Tester

Universally Speaking

England, United Kingdom (On-Site)
3 Months ago
CommerceIQ - Software Development Engineer Testing II - Platform

CommerceIQ

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Capgemini - Pega Testing

Capgemini

Gurugram, Haryana, India (On-Site)
1 Month ago
Alphawave Semi - Senior ATE Test Engineer

Alphawave Semi

Hsinchu County, Taiwan (Hybrid)
1 Month ago
Sega (UK) - QA Associate Functionality Tester

Sega (UK)

Bulgaria (Hybrid)
1 Month ago
Qualcomm - System Test Engineer on ADAS

Qualcomm

Shanghai, China (On-Site)
1 Month ago
Nintendo - Certification Tester I

Nintendo

Redmond, Washington, United States (On-Site)
5 Months ago
Qualcomm - Automotive ADAS System Test and Integration Engineer Sr.

Qualcomm

Bengaluru, Karnataka, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

About The Company

Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create content.

San Jose, California, United States (On-Site)

San Jose, California, United States (On-Site)

Seattle, Washington, United States (On-Site)

Seattle, Washington, United States (On-Site)

San Jose, California, United States (On-Site)

View All Jobs

Get notified when new jobs are added by bytedance

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug