Security Engineer - Surface Coverage, Detection Engineering
10 Months ago • 6 Years + • $147,000 PA - $208,000 PA
Cyber Security
Job Description
Meta Security is seeking a skilled Security Engineer to bolster our threat detection and response capabilities. You will work closely with software engineers and offensive security specialists to identify critical assets, assess major risks, and evaluate potential attacks against Meta systems. Your responsibilities will include:
* Leading cross-functional projects to enhance our ability to effectively detect and respond to security incidents.
* Reviewing the security architecture of large-scale custom and commercial systems and independently proposing logging, detection, and prevention controls.
* Performing TTP-based threat modeling for a diverse range of assets, including endpoints, mobile devices, servers, internal services, public and private cloud environments, and networking equipment.
* Analyzing logs from various sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas.
* Building response workflows and actions that automatically resolve false positives and provide context, scaling our ability to investigate security incidents.
* Supporting security incident response in a cross-functional environment and driving incident resolution.
* Designing and implementing attack testing automation to validate detection coverage.
* Building logging pipelines using our custom datasets and infrastructure.
Good To Have:
- Experience in security-focused software engineering, designing large scale systems and data pipelines, or offensive security
- Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems
- Broad knowledge across the Security domain, as well as deep focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Offensive Security Testing, Detection and/or Response tooling development
Must Have:
- 6+ years of experience in Detection & Response Engineering or similar Security Engineering role
- Experience building complex automations and integrations using SOAR platforms
- Bachelor's degree or equivalent experience in Security
- Experience designing systems used for responding to both external and insider threats
- Experience analyzing network and host-based security events
- Knowledge of networking technologies, specifically TCP/IP and the related protocols
- Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux
- Coding/scripting experience in one or more general purpose languages
- Experience with attacker tactics, techniques, and procedures
Meta Security is looking for a Security Engineer with experience in threat modeling, TTP identification, and detection engineering. You’ll work alongside Software Engineers and Offensive Security Engineers to identify critical assets, assess the top risks, and evaluate potential attacks against Meta systems. You will be working across engineering teams supporting Production and Corporate systems to develop detection and response automation leveraging both industry-standard and custom detection and response platforms. You’ll generate detection ideas utilizing some of the world’s largest data sets and build on top of hyper-scale data pipelines.
Security Engineer - Surface Coverage, Detection Engineering Responsibilities
- Lead cross-functional projects to improve our capabilities to effectively detect and respond to security incidents
- Review security architecture of large-scale custom and commercial systems and independently propose logging, detection and prevention controls
- Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
- Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas
- Build response workflows and actions that auto-resolve false positives and provide context scaling our ability to investigate
- Support security incident response in a cross-functional environment and drive incident resolution
- Design and implement attack testing automation to validate detection coverage
- Build logging pipelines using our custom datasets and infrastructure
Minimum Qualifications
- 6+ years of experience in Detection & Response Engineering or similar Security Engineering role
- Experience building complex automations and integrations using SOAR platforms
- Bachelor's degree or equivalent experience in Security
- Experience designing systems used for responding to both external and insider threats
- Experience analyzing network and host-based security events
- Knowledge of networking technologies, specifically TCP/IP and the related protocols
- Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux
- Coding/scripting experience in one or more general purpose languages
- Experience with attacker tactics, techniques, and procedures
Preferred Qualifications
- Experience in security-focused software engineering, designing large scale systems and data pipelines, or offensive security
- Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems
- Broad knowledge across the Security domain, as well as deep focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Offensive Security Testing, Detection and/or Response tooling development
For those who live in or expect to work from California if hired for this position, please click for additional information.
Start preparing
Learn about how to prepare for your interview with our interview guide, tips, and interactive experiences.Locations
Data Center
About Meta
Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today—beyond the constraints of screens, the limits of distance, and even the rules of physics.
$147,000/year to $208,000/year + bonus + equity + benefits
Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate, monthly rate, or annual salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base compensation, Meta offers benefits. Learn more about at Meta.
Equal Employment Opportunity and Affirmative Action
Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. You may view our Equal Employment Opportunity notice .
Meta is committed to providing reasonable support (called accommodations) in our recruiting processes for candidates with disabilities, long term conditions, mental health conditions or sincerely held religious beliefs, or who are neurodivergent or require pregnancy-related support. If you need support, please reach out to .
Set alerts for more jobs like Security Engineer - Surface Coverage, Detection Engineering
Set alerts for new jobs by Meta
Set alerts for new Cyber Security jobs in United States
Set alerts for new jobs in United States
Set alerts for Cyber Security (Remote) jobs
