Security Engineer - Detection Engineering, Surface Coverage

Summary :

Meta Security is looking for a Security Engineer with experience in threat modeling, TTP identification, and detection engineering. You'll work alongside Software Engineers and Offensive Security Engineers to identify critical assets, assess the top risks, and evaluate potential attacks against Meta systems. You will be working across engineering teams supporting Production and Corporate systems to develop detection and response automation leveraging both industry-standard and custom detection and response platforms. You'll generate detection ideas utilizing some of the world's largest data sets and build on top of hyper-scale data pipelines.

Required Skills :

Security Engineer - Detection Engineering, Surface Coverage Responsibilities :

Lead cross-functional projects to improve our functionalities to effectively detect and respond to security incidents

Review security architecture of large-scale custom and commercial systems and under your own initiative propose logging, detection and prevention controls

Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment

Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas

Build response workflows and actions that auto-resolve false positives and provide context scaling our capacity to investigate

Support security incident response in a cross-functional environment and drive incident resolution

Design and implement attack testing automation to validate detection coverage

Build logging pipelines using our custom datasets and infrastructure

Minimum Qualifications :

Minimum Qualifications :

2+ years of experience in Detection and Response Engineering or similar Security Engineering role

Bachelor's degree or equivalent experience in Cyber Security

Experience building complex automations and integrations using Security Orchestration, Automation and Response platforms

Experience designing systems used for responding to both external and insider threats

Experience analyzing network and host-based security events

Knowledge of networking technologies, specifically Transmission Control Protocol (TCP) / Internet Protocol (IP) and the related protocols

Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux

Coding / scripting experience in one or more general purpose languages

Experience with attacker tactics, techniques, and procedures

Preferred Qualifications :

Preferred Qualifications :

Experience in Detection & Response Engineering or similar Security Engineering role

Experience building complex automations and integrations using Security Orchestration, Automation and Response (SOAR) platforms

Background in security-focused software engineering, designing large scale systems and data pipelines, or offensive security

Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems

Broad knowledge across the Security domain, as well as thorough focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Offensive Security Testing, Detection and / or Response tooling development

Experience designing systems used for responding to both external and insider threats

Experience analyzing network and host-based security events

Knowledge of networking technologies, specifically TCP / IP and the related protocols

Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux

Public Compensation :

$117,000 / year to $173,000 / year + bonus + equity + benefits

Industry : Internet

Equal Opportunity :

Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment.

Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.