Security Engineer - Surface Coverage, Detection Engineering

Meta Security is seeking a Security Engineer with expertise in threat modeling, TTP identification, and detection engineering. This role involves collaborating with Software Engineers and Offensive Security Engineers to identify critical assets, assess top risks, and evaluate potential attacks against Meta systems. You'll work across engineering teams supporting Production and Corporate systems to develop detection and response automation, leveraging both industry-standard and custom platforms. The position requires generating detection ideas using some of the world's largest data sets and building on top of hyper-scale data pipelines.

Key responsibilities include:

• Leading cross-functional projects to enhance security incident detection and response capabilities
• Reviewing security architecture of large-scale systems and proposing logging, detection, and prevention controls
• Performing TTP-based Threat Modeling for various assets including endpoints, servers, cloud environments, and networking equipment
• Analyzing logs from diverse sources to identify potential threats and detection ideas
• Building response workflows and actions to auto-resolve false positives and provide context for investigations
• Supporting security incident response in a cross-functional environment
• Designing and implementing attack testing automation to validate detection coverage
• Building logging pipelines using custom datasets and infrastructure

The ideal candidate should have:

• 6+ years of experience in Detection & Response Engineering or similar Security Engineering role
• Experience building complex automations and integrations using SOAR platforms
• A Bachelor's degree or equivalent experience in Security
• Experience designing systems for responding to external and insider threats
• Proficiency in analyzing network and host-based security events
• Knowledge of networking technologies, operating systems, and file systems
• Coding/scripting experience in one or more general-purpose languages
• Familiarity with attacker tactics, techniques, and procedures

Preferred qualifications include experience in security-focused software engineering, designing large-scale systems and data pipelines, or offensive security. Knowledge of threat hunting, leveraging intelligence data, and broad expertise across the Security domain are also valuable.

This role offers an opportunity to work on cutting-edge security challenges at one of the world's leading technology companies, contributing to the protection of Meta's vast user base and infrastructure.