Security Detection Engineer, Insider Trust
$147,000 - $208,000/Yr
Meta - Dover, DE
posted 2 months ago
Full-time - Mid Level
Dover, DE
Web Search Portals, Libraries, Archives, and Other Information Services
About the position
The Security Detection Engineer for the Insider Trust team at Meta is responsible for identifying and responding to insider threats to data. This role involves building and improving internal tools and systems to detect malicious activities, analyzing and monitoring internal tools, and conducting complex investigations. The engineer will collaborate with software engineering teams to develop advanced detection capabilities and work closely with Human Resources and Legal teams to address insider threats effectively.
Responsibilities
- Lead cross-functional projects to improve GenAI capabilities for detecting and responding to internal threats and security incidents.
- Leverage threat modeling and analysis to build event and/or behavioral based detections to protect critical GenAI assets and infrastructure.
- Perform analysis of logs from various sources to identify potential insider threats.
- Build operational workflows and actions that auto-resolve false positives and provide context for investigations.
- Identify gaps in infrastructure and collaborate with software engineers, product managers, and business partners to enhance visibility through logging and detection.
Requirements
- Bachelor's degree in Computer Science, Engineering, or equivalent experience.
- 5+ years of experience in Detection & Response Engineering or similar Security Engineering role.
- Experience developing detections using event or anomaly based methods.
- Experience interpreting information from multiple sources and working with data sets.
- Experience with database tools/systems such as SQL, HQL.
- Coding proficiency in Python.
Nice-to-haves
- Experience conducting technical security investigations (response, forensics, log analysis).
- Experience with anomaly detection applicable to the insider threat detection space.
- Experience in system, network, and/or application security.
- Coding proficiency in OOP languages, e.g. PHP, C++, etc.
- Coding proficiency in Pandas, NumPy, Scikit-learn, TensorFlow.
Benefits
- Bonus
- Equity
- Health benefits
