Cloud security architect at TikTok
- Location-Singapore
- Company-ByteDance
- Job type-on site full-time
- Experience level-Mid senior level
Qualifications
1. Familiar with the principles of common risks, attack and defense strategies; Understand how to systematically lead security architecture and risk governance.
2. Familiar with cloud-native and infrastructure technologies such as network access, LLM, big data, storage, cloud computing, microservices, zero trust, etc.
3. Familiarity with container security technologies (e.g., Docker, Kubernetes) and serverless security best practices.
4. Proficient in at least one language in Golang, Python, Java, or NodeJS, capable of doing code auditing/reviews and development.
5. Knowledge of security frameworks and standards (e.g., CIS Benchmarks, GDPR, HIPAA).
6. Strong communication and excellent teamwork skills. With professional working ethics, and have a keen risk awareness. Results orientated, aiming for long-term growth in this field.
Preferred Qualifications
1. Experience of discovering major impactful vulnerabilities domestically or internationally / winning large-scale security competitions is a plus.
2. Priority given to those who have led or participated in large-scale governance, architecture, and design projects.
3. Strong understanding of cloud computing platforms (e.g., AWS, Azure, GCP) and cloud security best practices.
Land Your Dream Job: VisualCV AI-Powered Resume Builder – 5X More Interviews, ATS-Proof, 10-Minute Creation
Job Responsibility
1. Design, implement, and oversee cloud security architecture, encompassing physical hardware, operating system, cloud-native application, data security and privacy protection, insider threats and generative AI.
2. Develop and enforce cloud security policies, standards, and procedures in alignment with industry regulations and best practices.
3. Conduct security risk assessments, security training, and vulnerability assessments to identify and address security gaps proactively.
4. Collaborate with cross-functional teams to integrate security controls into cloud products and underlying infrastructure.
5. Stay abreast of emerging cloud security trends, technologies, and threats, providing guidance on security strategies and solutions.
