Security Engineer Investigator, Cybercrime

    • Menlo Park, CA

Facebook's mission is to give people the power to build community and bring the world closer together. Through our family of apps and services, we're building a different kind of company that connects billions of people around the world, gives them ways to share what matters most to them, and helps bring people closer together. Whether we're creating new products or helping a small business expand its reach, people at Facebook are builders at heart. Our global teams are constantly iterating, solving problems, and working together to empower people around the world to build community and connect in meaningful ways. Together, we can help people build stronger communities - we're just getting started.

The eCrime team is dedicated to protecting the users of the Facebook family of applications (e.g. Facebook, Instagram, WhatsApp, Oculus), communities, and company from the worst actors and abusers. We are a mission driven team with a passion for protecting people. We are seeking an experienced technical threat investigator to deeply understand how fraud, abuse, spam, malware, and other related cybercrime manifests, investigate complex threats, advance investigative methods and use innovative research approaches to protect people from these threats. You will have the opportunity to work on the most challenging, complicated, and high-visibility security risks the company is facing. The impact of your work will be substantial, as outcomes could affect the billions of people who use our products. The ideal candidate will be an innovative self-starter, who is motivated by our mission and results driven. This is a full-time position based in our Menlo Park, CA office.

  • Investigate complex cases to understand in granular detail how abuse is occurring and attribute the person(s) responsible. Identify enforcement strategies to mitigate harm both in the current case and from similar forward-looking abuse.
  • Research how threats show up within the ecosystem and deeply understand how abuse manifests. Discover and clearly explain emerging threats and trends often with an emphasis on geo-political, cultural or societal specific differences.
  • Analyze and interpret large datasets to advance investigations, quantify trends or support findings.
  • Identify effective strategies to prevent or disrupt abuse at scale. Consult on the design of countermeasures to effect those strategies.
  • Take a leadership role in suggesting, prototyping, and teaching novel investigative techniques.
  • Proactively hunt for currently undetected abuse by leveraging internal data, open-source intelligence and third party private intelligence.
  • Address sensitive content issues, including but not limited to graphic images, videos and writings, offensive or derogatory language, and other objectionable material.
  • Proficiency with Python, PHP or similar scripting languages
  • Experience conducting large scale data analysis
  • Experience investigating and acting on high-impact threats and online threat actors
  • Experience working across the broader security community
  • Proven track record of managing and executing on short term and long term projects
  • BS/MS or equivalent experience in Computer Science, Information Systems, Intelligence Studies, Cybersecurity or related field
  • Background and expertise in one or many of the following areas: Ad fraud, fake engagement, fake or compromised accounts, spam and phishing attacks, and/or malware reverse-engineering and analysis
  • Experience with open source investigation techniques and familiarity with a variety of internet research tools
  • Familiarity with nation state and sophisticated criminal threats
  • Experience prioritizing and executing with minimal direction or oversight
  • Experience thinking critically and qualifying assessments with solid communications skills
  • Experience working with teams spanning multiple locations/time zones
  • Regional knowledge and/or language skills
Facebook is proud to be an Equal Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.Facebook is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at

Back to top