Demystifying Trust & Safety Roles

Written By Robyn Sotolov

Trust & Safety (T&S) is a natural place for government professionals seeking a private sector role where they can continue to protect others. T&S is the Internal Security and Intelligence function of a tech company that ensures platforms, users, and communities are safe, authentic, and compliant while providing a good user experience. This involves identifying adversarial behavior, drafting the rules of the road (Policy), and building the tools to detect and disrupt harm, ranging from misinformation and hate speech to financial scams and human trafficking, at a global scale. Below are some of the more common roles and their requisite skills.

A Note on the [T] and [T+] designations below:

  • [T] (Technical): You don't necessarily need to be a Computer Science major, but you must be able to use tools to find your own data. If you can't write a basic database query (SQL) or understand how an IP address maps to a user, this role will be a struggle.

  • [T+] (Highly Technical): These roles often sit within the Engineering or Product organizations. You are expected to understand "how the engine is built," not just how to drive the car.

Operations Roles

Investigator [T]: Disrupts coordinated bad actors (like botnets or state-sponsored influence Ops).

Skills: Data Forensics (pulling raw logs to find connections), Advanced OSINT (technical foot-printing), Link Analysis (using tools like Maltego or internal graph databases).

Threat Intelligence Analyst [T]: Monitors the "Deep Web" to anticipate emerging platform risks.

Skills: Cyber-Threat Mapping (understanding how malware or exploits spread), Technical Writing, Attribution (identifying who is behind a digital attack).

Operations Specialist [T]: Operations Specialist: Conducts "human-in-the-loop" moderation. Sometimes referred to as content moderation.

Skills: Good Judgement, Time Management, Analytic Mindset.

Policy Roles

Policy Manager: Authors the platform "Rules of the Road" to balance safety and expression.

Skills: Directive Writing, Interagency Coordination, Ethical Decision Making.

Public Policy Manager: Acts as the liaison between the company and global governments and organizations.

Skills: Diplomatic Communication, Legislative Analysis, Crisis Management.

Risk & Strategy Roles

Strategic Response Manager: Leads the response to activities that threaten users or the company as well as the "War Room" during high-stakes breaking news events.

Skills: Incident Command, Real-time Decision Making, Cross-functional Coordination.

Product & Engineering

Product Manager [T]: Defines how the safety tools are built by engineers.

Skills: Technical Architecture (understanding how the "machine" works), Data Modeling, User Experience (UX) Strategy.

Detection Specialist [T+]: Writes the "logic" (classifiers) that automatically catches bad content.

Skills: Algorithm Auditing, Boolean Logic & SQL, Adversarial Testing (finding the "code" loopholes bad actors use).

Compliance & Law Enforcement

Law Enforcement Outreach: Manages global legal requests for user data and subpoenas.

Skills: Liaison Officer Experience, Operational Security, Legal Review.

Content Compliance Analyst: Ensures the company follows strict global laws (like the EU's DSA) to avoid massive fines.

Skills: Audit & Oversight, Regulatory Reporting, Process Integrity.

Robyn Sotolov
Next

Three Years of Reinvention: Lessons I Took from Leaving the CIA for Tech and Coaching, & DC for San Francisco