Responsibilities
About The Team The security engineering team is missioned to build security services, platforms and technologies, as well as to support cross-functional teams to protect our users, products and infrastructures. In this team you'll have a unique opportunity to have first-hand exposure to the strategy of the company in key security initiatives, especially in building scalable and secure-by-design systems and solutions. You also have opportunities to go through the whole lifecycle of security products or services, are encouraged to participate in each phase, each part of the projects and have the whole picture of what we are working on. Responsibilities - Responsible for the development, integration, and implementation of the global production network identity and access system, as well as the zero-trust identity and permission systems - Responsible for building the AI Security Infrastructure for ByteDance and Volcano Engine, including components such as Agent Identity, Authorization & Policy, Authorization Guardrails, etc. - Identify security issues in existing systems and lead the design and development of secure system architectures maintain and improve existing architecture to enhance service capacity and stability.
Qualifications
Minimum Qualifications: - Bachelor's degree or above in Computer Science, Electrical Engineering, Information Security, or related fields. - 2+ years of R&D experience in the application security domain. - 3+ years of experience developing large-scale, distributed backend services for internet applications. - Familiar with core concepts of Linux networking, storage, and kernel fundamentals related to containers and container orchestration. - Proficient in one or more programming languages such as Golang, C, C++, Java, Rust, or Python, with extensive experience in development, debugging, and performance optimization. Preferred Qualifications - Experience in applied cryptography, access control systems, security hardware, or secure execution environments, such as: PKI/X509, TLS, KMS, Intel SGX, Arm TrustZone, AMD SEV, TPM, HSM, SE, HROT, IAM, OPA, etc. - Contributions to CNCF-related open-source projects understanding of public cloud underlying architecture hands-on architecture design and development experience for first-party cloud products-especially in physical networks, virtual networks, and related areas. - Familiarity with Kubernetes, with 2+ years of experience in container or container-orchestration development.
