Security Engineer, Vulnerability Management Position Available In New York, New York

Job Order Number:

DG0213573

Job Title:

Security Engineer, Vulnerability Management

Company:

Meta Location:

New York, NY

Salary:

Education:

Information Not Provided

Experience:

Information Not Provided

Hours:

Duration:

Full Time, Regular

Shift:

Description:

 

• Summary:

• The Meta Security Organization is seeking an experienced Security Engineer to help us mature Meta’s security posture through our vulnerability management program.

Our team strives to go beyond identifying vulnerabilities by preventing security problems during the development process to eliminate entire classes of vulnerabilities.

Do you have experience analyzing vulnerabilities and building vulnerability management programs? Can you identify when a vulnerability is critical enough to require real-time security response? Have you partnered with cross-functional partners to measure and improve how to identify, fix, and prevent vulnerabilities? Does the idea of having a meaningful and measurable impact on the security of one of the world’s largest infrastructures, which serves billions of people, sound exciting to you? Well, good news, we need your help!

• Required Skills:

•

Security Engineer, Vulnerability Management Responsibilities:

1. Analyze vulnerabilities to determine the real impact to our systems and applications, incorporating threat intelligence2. Drive solutions that enable high fidelity vulnerability contextualization, tracking, and remediation3. Influence what areas of the vulnerability pipeline would most benefit from automation to improve operational efficiency and influence the team to prioritize the work4. Dive into large datasets to identify strategic opportunities for security posture improvement5. Influence the Meta-wide vulnerability management strategy, collaborating with partners to deliver multi-year roadmaps, while coaching and supporting team members6. Provide rapid-response vulnerability analysis for active zero-days and participate in regular on-call vulnerability management rotation

• Minimum Qualifications:

•

Minimum Qualifications:

7. Bachelor of Science or Master of Science in Computer Science or related field, or equivalent experience8. 8+ years of experience in identifying security vulnerabilities, issues, risks, and developing mitigation plans9. 6+ years of experience in network, system, or software architecture: design, implementation, support, and evaluation of security-focused tools and services10. In-depth knowledge in technical and process regarding vulnerability management operations and company-wide programs to address the risk at scale11. Experience developing and delivering information on vulnerability operations and management program status for leadership12. Coding/scripting experience in one or more general purpose languages

• Preferred Qualifications:

•

Preferred Qualifications:

13. Experience generating automated metrics to measure service and program effectiveness and consistency14. Experience making contributions to the security or privacy community (public research, blogging, presentations, etc.)15. Background in malware analysis, digital forensics, intrusion detection, and/or threat intelligence16. Broad knowledge across the security domain17. Experience with attacker tactics, techniques, and procedures18. Experience leading and managing complex cross-functional programs19. Experience responding to both external and insider threats

• Public Compensation:

• $177,000/year to $251,000/year + bonus + equity + benefits

• Industry:

• Internet

• Equal Opportunity:

• Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer.

We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leve