Security Engineer, Investigator - I3e Account Threats & Scams

Security Engineer, Investigator - I3E Account Threats & Scams

The Integrity, Investigations, and Intelligence (i3E) Account Threats team is dedicated to protecting the users of Meta's family of applications from the worst kinds of account security issues. You will have the opportunity to have impact by solving the most complex problems Meta faces in account security. Your work will positively affect the billions of people who use our products. We are seeking an experienced security engineer to proactively detect and analyze root causes of scams, account security abuses, investigate complex threats to our business and our users, advance investigative methods and AI tooling, conduct quantitative and qualitative decision making, and use novel approaches to protect our users from harm.

Responsibilities:

1. Hunt for threats and undetected abuse by leveraging internal data, open source intelligence, and third-party private intelligence
2. Investigate complex account security abuses to understand in granular detail how abuse is occurring. Identify and implement appropriate detection or prevention strategies to mitigate harm both in the current case and from similar forward-looking abuse
3. Apply subject matter knowledge of adversary tactics, techniques, procedures, and tools to identify and mitigate threats
4. Build signatures (e.g. file, network) to detect, hunt, and prevent malware compromise
5. Lead technical investigations from start-to-finish, to include effectively communicating actionable results, analytic judgments, and mitigations to different audience types across cross-functional settings
6. Identify trends in adversary behavior, and proactive surfacing of risks that may represent previously unidentified or novel vectors for harm. Understand how abuse manifests and clearly explain emerging threats and trends, with an emphasis on security understanding
7. Analyze and interpret complex, high volume, and high dimensionality data from varying sources to advance investigations, quantify trends, or support findings
8. Lead identifying, prototyping, and teaching novel investigative techniques
9. Partner with other cross-functional teams to identify, influence, and implement holistic solutions to surfacing and responding to emerging threats
10. Manage multiple projects at once while effectively prioritizing time, based on team priorities
11. Use AI to advance investigations and automate the everyday tasks and actions conducted during investigations and team processes

Minimum Qualifications:

1. 5+ years work experience in a cyber security, security investigations, or cyber threat intelligence investigations role
2. Adept at building queries to analyze and interpret large datasets to advance investigations, quantify trends or support findings
3. Experience investigating and acting on high-impact threats such as account compromise, account automation tooling, account creation abuse, business compromise, scams, phishing attacks or malware analysis
4. Proficiency working with Python, PHP, or similar scripting languages
5. Experience thinking critically and qualifying assessments with solid communications skills in a cross-functional setting to influence decision makers across all levels of technical background
6. Experience identifying effective strategies to prevent or disrupt abuse at scale. Consult on the design of countermeasures to affect those strategies

Preferred Qualifications:

1. Experience with advanced use or building of AI tooling (LLMs, embeddings, fine-tuning, RAG, agentic workflows) to augment investigative workflows

Public Compensation: $147,000/year to $208,000/year + bonus + equity + benefits

Industry: Internet

Equal Opportunity: Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know.