Offensive Security Engineer, Purple Team
Meta

Meta's Offensive Security Group is looking for a Purple Team Offensive Security Engineer that use their in-depth subject-matter knowledge to test attack detection and prevention effectiveness across our environments. Candidates are expected to scope, prepare, and deliver technology-oriented assessments that positively benefit the overall security posture of the organization. This role requires a desire to help drive fixes after testing cycles, both as short-term mitigations and long-term improvements.This position offers a variety of technical security challenges; self-starters and those with a passion for the security field are encouraged to apply!

Offensive Security Engineer, Purple Team Responsibilities:

• Design, scope, and lead Purple Team Engagements focused on working with partners to execute relevant Tactics, Techniques, and Procedures to provide information used to harden protections.
• Automate the creation of Tactics, Techniques, and Procedures, portions of engagements, and other offensive security work to inform and drive our engagements.
• Incorporate Threat Intelligence research to track APT trends and help our partners test their environments against new and emerging threats.
• Work with Incident Response, Product Security, and other security partners to align remediation efforts that best protect the company.
• Understand not only how something works on a in-depth, technical level, but also how it can be used for unintended purposes as an attacker.

Minimum Qualifications:

• 4+ years of experience Red Teaming, Penetration Testing, and/or Cyber Threat Hunting.
• Coding/scripting experience in one or more general purpose languages
• Knowledge of at least one cloud computing platform (e.g., AWS, GCP, Azure)
• Knowledge of server (Linux, Windows) and client (Windows, macOS, Linux) operating systems.
• Knowledge and understanding of attack surfaces for enterprise systems and services.
• Experience working closely with defenders to identify and fix problems.

Preferred Qualifications:

• Experience performing and leading closed source and code assisted assessments.
• Experience with complex, multi-stage, multi-person engagements for internal partners.
• Experience building infrastructure using DevOps technologies and concepts to support offensive security teams.
• Background in intrusion detection, security investigations, and incident response.
• Experience "threat hunting". (i.e., using threat intel to proactively and iteratively investigate these potential risks and finding suspicious behavior in the network)
• OSCP certification, or equivalent.
• Track record of participation in capture the flag (CTF) competitions.
• Contributions to the security community (e.g., public research, blogging, presentations, bug bounty, tooling, etc.)

About Meta: