Deskripsi Pekerjaan
We are seeking a highly skilled and strategic Cloud Security Software Engineer Business Partner to join our Security Team at ByteDance. In this pivotal role, you will bridge the gap between advanced security engineering and business objectives, ensuring our global suite of products operates on a foundation of trust and resilience.
The team is dedicated to researching offensive and defensive technologies to continuously improve the company's fundamental security. You will work closely with cross-functional business units to understand their unique challenges and architect innovative, scalable cloud-native solutions. Your mission is to translate complex security requirements into actionable roadmaps while acting as a trusted advisor to engineering and product teams.
If you are passionate about cloud security, influencing strategy, and protecting user data at an unprecedented scale, this is the opportunity for you. You will be directly shaping the security posture of cutting-edge applications used by billions.
ByteDance is a global leader in technology, operating in over 200 cities worldwide. Joining us means solving some of the most complex security problems alongside top talent from diverse backgrounds. We offer highly competitive compensation, comprehensive benefits, and a dynamic environment where your contributions make a direct and visible impact.
Tanggung Jawab
- Act as the primary security business partner for specific product lines, translating complex security requirements into actionable engineering roadmaps.
- Design, implement, and manage advanced cloud security controls (e.g., IAM, data protection, network security) across multi-cloud environments (AWS, GCP, Azure).
- Conduct in-depth threat modeling and security architecture reviews for new features and critical infrastructure components.
- Develop and automate security testing and compliance validation tools to integrate seamlessly into CI/CD pipelines (DevSecOps).
- Lead incident response efforts and root cause analysis for complex security events, driving long-term preventative measures.
- Collaborate closely with engineering teams to remediate vulnerabilities and harden applications against emerging threats.
- Stay at the forefront of the latest offensive and defensive security trends, applying insights to enhance the company's overall security posture.
Kualifikasi
- Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field (or equivalent practical experience).
- 5+ years of hands-on experience in cloud security engineering or a related role, with deep expertise in AWS, GCP, or Azure.
- Comprehensive understanding of core security domains: IAM, network security, application security, cryptography, and data loss prevention.
- Proven track record in a business partner or technical advisory capacity, working directly with product and engineering teams to drive security outcomes.
- Strong programming and automation skills in Python, Go, or Java for building security tools and frameworks.
- Extensive experience with container security (Kubernetes, Docker) and infrastructure-as-code (Terraform, Pulumi).
- Excellent verbal and written communication skills, with the ability to articulate security concepts to diverse technical and non-technical stakeholders.
- Relevant industry certifications (e.g., CISSP, CCSK, AWS Security Specialty, GCP Professional Cloud Security Engineer) are highly desirable.