Responsibilities
About the Team As part of ByteDance's Security Department, Security BP team is not only responsible for the security and risk management of the Monetization business, but also plays an important role in connecting and building trust between the business and security team. Leveraging on various capabilities provided by the Security Department, we ensure the business and customer data are secured by providing high-quality services to the Monetization business, such as platform security, product security, business security and compliance governance. Responsibilities 1. Responsible for planning and customizing data security management systems, planning and building an internal data security protection system, and enhancing data security. 2. Plan the design and implementation of data security products (including data hierarchical governance, data asset maps, data lineage tracking applications, data encryption, data sharing, permission management, security audits, and baseline development applications). 3. Promote data security risk management (including risk identification and discovery, solution development and governance promotion, continuous improvement and optimization, and post-event follow-up). 4. Continuously verify the effectiveness of data security control measures, and follow up on the identification, response, disposal, investigation, and evidence collection of data security incidents.
Qualifications
Minimum Qualifications 1. Major in information security, network security, or computer science, with at least 5 years of data security-related work experience 2. Familiarity with the data security lifecycle, understanding of data security risk points and key development tasks within each lifecycle, and extensive experience in building data security systems 3. Familiarity with common security attack and defense techniques and closed-loop risk management approaches, with extensive practical experience in data security risk identification and governance, and a strong understanding of data sensitivity 4. Familiarity with data security products, such as data leakage prevention, UEBA, data identification, data encryption and decryption, and data sharing, with experience in data security product planning, design, development, and operational implementation 5. Strong logical thinking, stress tolerance, communication and coordination skills, and project management skills. Preferred Qualification 1. Familiarity with enterprise-level big data security issues, such as Hadoop, HDFS, and ElasticSearch. Practical experience in information security data mining, data analysis, and intelligence analysis is preferred
