TikTok is looking for a Penetration Tester in Washington – Apply Here!

Deal Score0
Deal Score0


TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok has global offices including Los Angeles, New York, London, Paris, Berlin, Dubai, Singapore, Jakarta, Seoul and Tokyo.

Why Join Us

At TikTok, our people are humble, intelligent, compassionate and creative. We create to inspire – for you, for us, and for more than 1 billion users on our platform. We lead with curiosity and aim for the highest, never shying away from taking calculated risks and embracing ambiguity as it comes. Here, the opportunities are limitless for those who dare to pursue bold ideas that exist just beyond the boundary of possibility. Join us and make impact happen with a career at TikTok.

TikTok’s US Privacy Operations team is the organization that leads, supervises, and empowers all TikTok’s US privacy work. We are expanding our US based Privacy Red Team, to execute privacy-focused technical assessments across multiple products and services. This role requires constructively advising on post-assessment remediation activities.

• Conduct technical assessments focused on finding privacy issues in internal and external facing systems, products and services
• Partner with Engineering teams to optimize SDLC testing
• Support the development of practices, processes, mechanisms, and the documentation for these activities, both internally and with working groups.
• Document and catalog privacy issues discovered during assessments
• Research new and novel tactics, techniques, and procedures that may be used to gain inappropriate access to user data
• Build tooling to automate portions of assessments


Minimum Qualification
• 3+ years experience in either Red Teaming, Penetration Testing, Vulnerability Research, or Application Security (conducting formal security reviews)
• 2+ years work experience in a role coding in Python, PHP, Java, C/C++ (or equivalent language) including code maintenance and review
• Experience translating technical concepts into language that is understood by software engineers, business and technical leaders
• Experience with common testing frameworks, such as the MITRE ATT$CK framework
• Experience with tools used to perform Dynamic Application Security Testing (DAST) or Static Application Security Testing (SAST)
• A strong understanding of core internet and networking technologies (e.g., TCP/IP, load balancing, authentication mechanisms, etc.)
• Relevant industry certifications (ISC2, ISACA, SANS/GIAC, CompTIA, AWS, GCP etc.)
• This role will need to be based out of one of the following locations: Mountain View, CA, Washington, DC, or New York City, NY

Preferred Qualification
• Experience implementing or assessing the implementation of GDPR, CCPA, or equivalent privacy regulation
• Experience making contributions to the security or privacy community, such as public research, blogging, presentations, bug bounties, CVEs, etc.
• B.S. or M.S. in Computer Science or relevant certification

TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

TikTok is committed to providing reasonable accommodations during our recruitment process. If you need assistance or an accommodation, please reach out to us at [email protected]

Apply Here

We will be happy to hear your thoughts

      Leave a reply

      Tech Jobs Here

      Get Alerts on the Latest Job Posts in your Inbox- Daily!




      We will not spam you. Don't forget to add us to your contacts!