Offensive Security Engineer

Meta’s Offensive Security Group is looking for an Offensive Security Engineer that can execute tactical, offensive assessments across our environments. Our objective is to preempt the adversary in attacking Meta, and make the company, its employees, and its users safer and more secure.
Should have knowledge across the attack lifecycle and should have experience in execution of security assessments against various technologies and stacks. Candidates are expected to support delivering technology-oriented assessments that positively benefit the overall security posture of the organization. This role requires a desire to help drive fixes after testing cycles, both as short term mitigations and long term improvements.Offensive Security Engineer Responsibilities

• Offensive Security Assessments: Perform security assessments ranging from Red Team operations, threat-based evaluations, and vulnerability research and exploitation against both the unique systems and technologies used at Meta, as well as approved 3rd party software and vendors.
• Help in the building of tooling to automate portions of assessments, scoping or other offensive security work, and use this model to inform and drive our assessments, as well as assist other teams with Facebook security efforts
• Design, scope, and lead complex technical assessments on internal and external facing systems.
• Influence and align the team’s vision and strategy. Collaboratively prioritize and deliver specific multi-year roadmaps and projects.
• Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team's work.
• Coach, mentor, support and care for the team in a way that enables long-term career development, happiness and success at scale.

Minimum Qualifications

• Bachelor's degree (or foreign degree equivalent) in Information Systems Engineering, Computer Science, Engineering, Information Security, Cyber Security, Information Assurance, or related field, and 5+ years of work experience in Red Teaming and Offensive Security in a large, regulated organization.
• Be a technical and process subject matter expert regarding Red Teaming and Offensive Security services, and attacker tactics, techniques, and procedures.
• Experience leading and managing complex cross-functional programs and teams.
• Analyze C, C++, C# or Java code implementations for vulnerabilities and design flaws.
• Modern Web Browser, Web Application, User mode, Kernel mode, debugging, reverse engineering and exploitation techniques.
• Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux.
• Coding and scripting experience in one or more general purpose languages.

Preferred Qualifications

• Contributions to the security community (public research, blogging, presentations, bug bounty, tooling, etc.)
• Track record of participation in capture the flag (CTF) competitions.
• OSCP certification, or equivalent.

For those who live in or expect to work from California if hired for this position, please click here for additional information. About Meta Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today—beyond the constraints of screens, the limits of distance, and even the rules of physics.
$147,000/year to $208,000/year + bonus + equity + benefits

Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate, monthly rate, or annual salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base compensation, Meta offers benefits. Learn more about benefits at Meta.

Equal Employment Opportunity Meta is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. You may view our Equal Employment Opportunity notice here.
Meta is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, fill out the Accommodations request form.