Meta Security is seeking a Threat Intelligence Investigator

Meta Security is looking for a threat intelligence investigator with extensive experience in investigating cyber threats using an intelligence-driven approach. You will proactively respond to a broad set of security threats and track actor groups targeting Meta and its employees. Your role will involve identifying gaps in current detections and preventions through long-term intelligence tracking and research, and collaborating with cross-functional stakeholders to enhance Meta’s security posture. You will help establish, lead, and execute multi-year roadmaps to improve research efficiency and quality, and drive improvements in stakeholder management across various intelligence requirements.

Detection & Response Security Engineer, Threat Intelligence Responsibilities

• Influence and align the team’s vision and strategy. Collaboratively prioritize and deliver specific multi-year roadmaps and projects.
• Build, cultivate, and maintain impactful relationships with intelligence stakeholders to identify and facilitate solutions that increase the team's impact.
• Refine operational metrics, key performance indicators, and service level objectives to measure Intelligence research and services.
• Lead cross-functional projects to improve the security posture of Meta’s infrastructure, including red team operations, surface detection coverage expansion, and vulnerability management discussions.
• Track threat clusters posing risks to Meta’s infrastructure and employees, and identify, develop, and implement countermeasures on our corporate network.
• Investigate, mitigate, and forecast emerging technical trends, communicating actionable suggestions to diverse audiences.
• Work closely with incident responders to provide useful and timely intelligence for ongoing investigations.
• Improve threat cluster tracking tooling and intelligence data integration with existing systems.

Minimum Qualifications

• 8+ years of threat intelligence experience.
• B.S. or M.S. in Computer Science or a related field, or equivalent experience.
• Technical and process subject matter expertise in Security Operations and Threat Intelligence services.
• Experience developing and delivering information on threats, incidents, and program status to leadership.
• Expertise with campaign tracking techniques and converting tracking results into long-term countermeasures.
• Expertise with threat modeling frameworks, such as the Diamond Model or MITRE ATT&CK framework.
• Experience with intelligence-driven hunting to identify suspicious activities and potential risks in the network.
• Proven track record of managing and executing short-term and long-term projects.
• Ability to work effectively with a team spanning multiple locations and time zones.
• Ability to prioritize and execute tasks with minimal direction or oversight.
• Critical thinking and assessment qualification skills, coupled with strong communication abilities.
• Coding or scripting experience in one or more languages such as Python or PHP.

Preferred Qualifications

• Experience recruiting, building, and leading technical teams, including performance management.
• Experience closely collaborating with incident responders on incident investigations.
• Experience in threat hunting, including leveraging intelligence data to proactively identify and iteratively investigate suspicious behavior across networks and systems.
• Familiarity with malware analysis or network traffic analysis.
• Familiarity with nation-state, sophisticated criminal, or supply chain threats.
• Familiarity with file-based or network-based rules and signatures for detection and tracking of complex threats, such as YARA or Snort.
• Experience in one or more query languages such as SQL.
• Experience authoring production code for threat intelligence tooling.
• Experience conducting large-scale data analysis.
• Experience working within the broader security community.

About Meta

Meta builds technologies that help people connect, find communities, and grow businesses. From launching Facebook in 2004 to empowering billions with apps like Messenger, Instagram, and WhatsApp, Meta is now moving towards immersive experiences like augmented and virtual reality to shape the future of social technology. Join us at Meta to build a future beyond digital connection, transcending screens, distance, and the limits of physics.

Meta is an Equal Employment Opportunity and Affirmative Action employer. We consider qualified applicants regardless of race, religion, color, national origin, sex, sexual orientation, gender identity, age, veteran status, disability, or other protected characteristics. We also consider applicants with criminal histories in accordance with applicable laws. Meta participates in E-Verify where required. AI and machine learning technologies may be used in the hiring process.

Meta is committed to providing reasonable accommodations for candidates with disabilities. If you need assistance, please contact [email protected].

$177,000/year to $251,000/year + bonus + equity + benefits. Individual compensation is determined by skills, qualifications, experience, and location. This posting reflects base compensation only and may not include bonuses, equity, or sales incentives. Meta offers comprehensive benefits.