Security Engineer - Surface Coverage, Detection Engineering
Menlo Park, CA | Washington, DC | New York, NY | Remote, US
- Lead cross-functional projects to improve our capabilities to effectively detect and respond to security incidents
- Review security architecture of large-scale custom and commercial systems and independently propose logging, detection and prevention controls
- Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
- Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas
- Build response workflows and actions that auto-resolve false positives and provide context scaling our investigators
- Support security incident response in a cross-functional environment and drive incident resolution
- Design and implement attack testing automation to validate detection coverage
- Build logging pipelines using our custom datasets and infrastructure
- 6+ years of experience in Detection & Response Engineering or similar Security Engineering role
- Experience building complex automations and integrations using SOAR platforms
- Bachelor's degree in computer science or related field or equivalent experience in Security
- Experience designing systems used for responding to both external and insider threats
- Experience analyzing network and host-based security events
- Knowledge of networking technologies, specifically TCP/IP and the related protocols
- Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux
- Coding/scripting experience in one or more general purpose languages
- Experience with attacker tactics, techniques, and procedures
- Background in security-focused software engineering, designing large scale systems and data pipelines, or offensive security
- Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems
- Broad knowledge across the Security domain, as well as focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Offensive Security Testing, Detection and/or Response tooling development
$147,000/year to $208,000/year + bonus + equity + benefits
Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate, monthly rate, or annual salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base compensation, Meta offers benefits. Learn more about benefits at Meta.
Equal Employment Opportunity and Affirmative Action Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. You may view our Equal Employment Opportunity notice here.
Meta is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, fill out the Accommodations request form. Apply
Job Profile
California residents preferred
Benefits/PerksAccommodations Benefits Bonus Equity Individual compensation Reasonable accommodations
Tasks- Analyze logs
- Build
- Build logging pipelines
- Build response workflows
- Design
- Design attack testing automation
- Develop
- Lead cross-functional projects
- Perform threat modeling
- Review security architecture
- Testing
Architecture Attack testing Automation Coding Computer Science Data Pipelines Design Detection engineering Digital Forensics Engineering File systems Host-Based Security Identity Incident Management Incident Response Infrastructure Linux MacOS Modeling Networking Networking technologies Offensive Security Offensive security testing Operating Systems Physics Procedures Scripting Security Security Architecture Security Engineering Security Testing SOAR platforms Software Engineering Systems TCP TCP/IP Techniques Testing Threat Hunting Threat modeling TTP identification Virtual reality Windows
Experience6 years
EducationBachelor Bachelor's Bachelor's degree Bachelor's degree in Computer Science Computer Science Design Engineering Equivalent Equivalent experience Equivalent experience in security Management Physics Related Field Software Engineering Technology
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-4 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9