**Summary:** As part of Meta Security, our Insider Trust team is focused on identifying and responding to insider threats to data. The team's mission is to identify malicious use of otherwise legitimate access to data from people inside the company and respond to it before damage is done. We investigate across a broad spectrum of abuse including abuse of user data, intellectual property, and leaks of sensitive information. We collaborate with software engineering teams to build advanced detection capabilities and understand how abuse happens so that we can stay ahead of those who are interested in misusing their access.The Insider Trust team is looking for a highly motivated Security Engineer to build and improve internal tools and systems to detect malicious activities related to insider threats. Candidates are expected to analyze and monitor internal tools, hunt for insider threats against company data and infrastructure, and have the ability to carry out complex internal investigations from collection to reporting. As part of the role, this person will work side by side with our engineering teams to build advanced detection solutions to help keep systems and information safe, and partner closely with our Human Resources and Legal teams to carry out complex investigations. **Required Skills:** Security Detection Engineer, Insider Trust Responsibilities: 1. Lead cross-functional projects to improve our capabilities to effectively detect and respond to security incidents 2. Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas 3. Support security incident response in a cross-functional environment and drive incident resolution 4. Build logging pipelines using our custom datasets and infrastructure 5. Identify gaps in our infrastructure, and work with software engineers, product managers, and business partners to gain visibility through logging and detection 6. Leverage threat modeling and analysis to build event and/or behavioral based detections to protect our critical assets and infrastructure **Minimum Qualifications:** Minimum Qualifications: 7. Bachelor's degree in Computer Science, Engineering, or equivalent experience 8. 3+ years of experience in Detection & Response Engineering or similar Security Engineering role 9. Experience analyzing network and host-based security events 10. Coding experience in Python and/or one or more general purpose languages 11. Experience with attacker tactics, techniques, and procedures **Preferred Qualifications:** Preferred Qualifications: 12. M.S. or PhD in Computer Science or related field, or equivalent experience 13. Experience with anomaly detection applicable to the insider threat detection space 14. Experience in security-focused software engineering, designing large scale systems and data pipelines, or offensive security 15. Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems 16. Broad knowledge across the Security domain, as well as demonstrated experience in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Offensive Security Testing, Detection and/or Response tooling development 17. Coding proficiency in Pandas, NumPy, Scikit-learn, TensorFlow 18. Knowledge of networking technologies, specifically TCP/IP and the related protocols 19. Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux **Public Compensation:** $117,000/year to $173,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.