Job Description

Meta's security team is the central engine driving data and systems security at the company, supporting Meta and all of its family of apps. The organization is responsible for inhibiting malicious actors from compromising our environment, detecting and responding to them before they do damage if they do, ensuring we are maintaining the protections we say we will, and engaging with the community to help those outside the company learn from the work we do. We work across all parts of the company, from the corporate infrastructure to production to external services, interfacing with nearly every team in the company.The Security Engineer should have prior experience with security policy, risk, and access management disciplines as well as collaborating with cross-functional teams. This position will be responsible for identifying and enforcing solutions to control access to internal systems, cover broad aspects of information security, and identify deficiencies in the access management space. The Security Engineer will demonstrate conceptual understanding of the IAM concepts that can be applied to our internal IAM solutions. Some travel may be required.





###

Security Engineer, Identity and Access Management (IAM) Responsibilities:

Design and implement systems that enhance the security of Meta's Identity & Access Management Systems. Build and maintain tools that improve the Identity and Access Management posture at Meta. Conducting design and code reviews Analyze and improve efficiency, scalability, and stability for assigned product area and/or systems. Identify and drive changes as needed for assigned codebase, product area and/or systems. Interface with other teams to incorporate their innovations and vice versa. Communicate security findings to internal to a variety of stakeholders, including both technical and non-technical stakeholders. Provide defensible recommendations on technical, physical and administrative control implementations based on findings while balancing the cost versus benefits. Participating in the development and oversight of corrective actions relating to security issues. Participating in cross-functional, team, and status review meetings. Recommending process improvement and strategic initiatives as related to security.






###

Minimum Qualifications:

2+ years of experience with Python/C++ and PHP/Hack. BSc in Computer Science related field, or equivalent experience 3+ years of software development experience






###

Preferred Qualifications:

Program and project management skills. Experience building large-scale distributed systems or similar experience. Good grasp of SOX, SOC2, NIST, PCI, ISO, and other security regulations. Analytical and problem-solving skills, including a basic understanding of data analysis techniques. Communication skills - both written and verbal, interpersonal skills, and ability to work cross-functionally with various teams. Experience with developing security reporting and recommendations that are meaningful, defensible and actionable for a variety of audiences. Experirnce with managing competing priorities and simultaneous projects in a fast-paced environment with little supervision. Knowledge of evaluating systems architectural designs, data-flow diagrams and technical security implementations, particularly in context of access management in different geographical locations. Experience in assessing security deficiencies in first-party/internal information systems and recommending mitigating controls.






###

About Meta:

Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today--beyond the constraints of screens, the limits of distance, and even the rules of physics.













Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate, monthly rate, or annual salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base compensation, Meta offers benefits. Learn more about benefits at Meta.