Location: New York,NY, USA
Meta's Offensive Security Group is looking for a Purple Team Offensive Security Engineer that use their in-depth subject-matter knowledge to test attack detection and prevention effectiveness across our environments. Candidates are expected to scope, prepare, and deliver technology-oriented assessments that positively benefit the overall security posture of the organization. This role requires a desire to help drive fixes after testing cycles, both as short-term mitigations and long-term improvements.
This position offers a variety of technical security challenges; self-starters and those with a passion for the security field are encouraged to apply!4+ years of experience Red Teaming, Penetration Testing, and/or Cyber Threat Hunting. Coding/scripting experience in one or more general purpose languages Knowledge of at least one cloud computing platform (e.g., AWS, GCP, Azure) Knowledge of server (Linux, Windows) and client (Windows, macOS, Linux) operating systems. Knowledge and understanding of attack surfaces for enterprise systems and services. Experience working closely with defenders to identify and fix problems. Experience performing and leading closed source and code assisted assessments. Experience with complex, multi-stage, multi-person engagements for internal partners. Experience building infrastructure using DevOps technologies and concepts to support offensive security teams. Background in intrusion detection, security investigations, and incident response. Experience threat hunting . (i.e., using threat intel to proactively and iteratively investigate these potential risks and finding suspicious behavior in the network) OSCP certification, or equivalent. Track record of participation in capture the flag (CTF) competitions. Contributions to the security community (e.g., public research, blogging, presentations, bug bounty, tooling, etc.)