Security Engineer - Surface Coverage, Detection EngineeringMeta's security team is the central engine driving data and system security. We work across all parts of the company, from corporate infrastructure to production to external services, interfacing with nearly every team in the company. We are looking for a Security Engineer with experience influencing, mentoring, and contributing alongside teams of engineers who focus on threat modeling, TTP identification, and detection engineering securing Meta's surfaces. You'll work alongside Software Engineers, Offensive Security Engineers, Product Managers, and Data Scientists/Engineers to identify critical assets, assess the top risks, and evaluate potential attacks against Meta systems. You will be working with engineering teams supporting Meta's products (including WhatsApp, Instagram, Horizon Worlds, Threads, and others) serving over 3.2 billion daily active users, working to understand existing detection coverage, enumerating gaps, and presenting findings to product, security, and legal senior leaders to drive decisions around multi-year risk mitigation efforts.
ResponsibilitiesInfluence and align the organization's vision and strategy, while engaging our teams to develop and deliver specific, multi-year roadmaps, programs, and projects.Collaborate with various functions, drive engineering initiatives and have an impact at an organizational level.Lead technical design and strategy leveraging insights from some of the most advanced infrastructure in the world.Partner with leadership to influence and drive org design, contribution and prioritization.Coach, mentor, support, and care for the team in a way that enables long-term career development, happiness, and success at scale.Leverage state-of-the-art graph-based TTP to asset mapping systems to enumerate transitive detection coverage and develop novel approaches to prioritize and scale Product-specific infrastructure coverage.Build, cultivate, and maintain positive relationships with cross-functional partners to enable the team's ability to effectively and efficiently execute on project work.Assist with hiring, growing, and building a high performing team capable of achieving the team's mission.Work across partners in Product Management, Data Science, and Data Engineering to design and iterate on metrics and goals related to attack enumeration and detection coverage and validation.Minimum Qualifications12+ years of work experience in software or security engineering.BS in Computer Science or equivalent experience in Security.Demonstrated experience in working across organizational boundaries to achieve company-wide impact.Experience leading and managing complex cross-functional programs.Knowledge of Windows, MacOS, and Linux operating systems, container orchestration, hypervisors, and distributed system security.Experience with an interpreted programming language (PHP, Python, Perl, Ruby, etc.).Experience with attacker tactics, techniques and procedures.Preferred QualificationsDemonstrated experience in one or more Security domains such as Detection Engineering, Product Security, Cloud Security - Web Application Security experience across the Software Development Lifecycle is a plus.Experience working with Legal and Governance, Risk, and Compliance teams to understand and address complex and emerging regulatory requirements.Background in security-focused software engineering, designing large scale systems and data pipelines, or in offensive security.Demonstrated experience launching, scaling, and obtaining buy-in from Product VP stakeholders on a complex multi-year security initiative.Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigate suspicious behavior across networks and systems.For those who live in or expect to work from California if hired for this position, please click here for additional information.
$213,000/year to $293,000/year + bonus + equity + benefits
Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate, monthly rate, or annual salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base compensation, Meta offers benefits. Learn more about benefits at Meta.
Equal Employment Opportunity and Affirmative Action
Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics.
Meta is committed to providing reasonable support (called accommodations) in our recruiting processes for candidates with disabilities, long term conditions, mental health conditions or sincerely held religious beliefs, or who are neurodivergent or require pregnancy-related support. If you need support, please reach out to ******.
#J-18808-Ljbffr