Summary:

The Product Security Assessments and Analysis (PSAA) organization focuses on detection, prevention, and mitigation of security vulnerabilities across the companys portfolio of products. With hundreds of mobile applications, new hardware platforms, and a complex ecosystem of interaction between them, this presents a unique challenge for mobile application security at Meta size and scale. The opportunity: Mobile Security Engineer on the Product Security Assessments and Analysis Team.Mobile security engineers at Meta have the opportunity to explore a wide range of problem spaces working on multiple tech stacks across Android, iOS, and custom operating systems and hardware. You will engage directly with product teams but have the support of a dedicated mobile security team to collaborate and share ideas. You will analyze application code and detect complex vulnerabilities, and communicate directly with the product teams to educate them and assist them in mitigating these risks. You will develop frameworks and tools to perform automated detection of vulnerabilities and scale the impact of individuals. You will define best practices across the company for solutions to novel industry challenges.

Required Skills:

Product Security Engineer, Mobile Responsibilities:

1. Security Reviews: perform manual design and implementation reviews of products and services that make up the Meta ecosystem, like Instagram, WhatsApp, Oculus, Portal, and more.

2. Automated Analysis and Secure Frameworks: build automation (static and dynamic analysis) and frameworks with software engineers that enable Meta to scale consistently across all of our products.

3. Developer Guidance: provide guidance and education to developers that help prevent the authoring of vulnerabilities.

4. Bug Bounty: help provide technical guidance to our world class bug bounty program and independent security researchers.

5. Industry Impact: push the industry forward through conference talks and open source projects to contribute broadly to security for the world.

Minimum Qualifications:

Minimum Qualifications:

1. Familiarity with mobile programming languages, development practices, and common bug patterns

2. Communication and collaboration skills

3. Experience in identifying and taking action on key areas

Preferred Qualifications:

Preferred Qualifications:

1. Contributions to the security community (public research, blogging, presentation, open source, etc.)

2. Experience with exploiting common security vulnerabilities

3. Experience writing software that enables security processes

4. B.S. or M.S. Computer Science or related field, or equivalent experience

Industry: Internet

Equal Opportunity: Facebook is proud to be an Equal Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Facebook is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at View email address on click.appcast.io.