- Lead security incident response in a cross-functional environment and drive incident resolution.
- Lead and develop Incident Response initiatives that improve Meta’s capabilities to effectively respond and remediate security incidents.
- Perform digital forensic acquisition and analysis of a wide variety of assets including endpoints, mobile, servers and networking equipment.
- Perform log analysis from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats.
- Build automation for response and remediation of malicious activity.
- 7+ years of experience in Security Incident Response, Investigations and Response Engineering.
- Knowledge of networking technologies and experience analyzing network-based security events.
- Knowledge of operating systems, file systems, and memory structures and experience in host and memory forensics (including live response) on Windows, macOS and Linux.
- Experience investigating and responding to both external and insider threats.
- Coding/scripting experience in one or more general purpose languages.
- Experience with attacker tactics, techniques, and procedures.
- Bachelor's degree or equivalent experience in Security.
- Experience as a Lead Security Incident Responder and Investigator in a large and regulated organization.
- Background in malware analysis, digital forensics, intrusion detection, and/or threat intelligence.
- Experience in threat hunting including the ability to leverage intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems.
- Broad knowledge across the Security domain, as well as deep focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Detection and/or response tool development.