Security Engineer, Malware Analysis

    • Washington, DC

Facebook's mission is to give people the power to build community and bring the world closer together. Through our family of apps and services, we're building a different kind of company that connects billions of people around the world, gives them ways to share what matters most to them, and helps bring people closer together. Whether we're creating new products or helping a small business expand its reach, people at Facebook are builders at heart. Our global teams are constantly iterating, solving problems, and working together to empower people around the world to build community and connect in meaningful ways. Together, we can help people build stronger communities - we're just getting started.

Facebook Security is looking for a Security Engineer, Malware Analysis with experience in malware analysis, reverse engineering, and detection. You will be analyzing malicious files and creating protections for Facebook's users and infrastructure. You will advance Facebook's mission of making the world more open and connected by quickly identifying and analyzing threats that aim to abuse Facebook, its platforms, or its community of users. We are looking for someone that is passionate about ripping apart binaries, discovering their intention and secrets, and creating signatures to hunt and proactively defend against threats.

  • Surface and triage novel malware on our platforms, corporate networks, and third party submissions
  • In-depth malware analysis to support threat intelligence, incident response, and platform integrity
  • Create signatures (file, host, network) to detect, hunt, and prevent malware compromise
  • Create tooling to increase our ability to triage, respond, and understand malware
  • Advise and consult with other teams as a subject matter expert
  • Experience with static and dynamic analysis tools for multiple systems and file formats
  • Knowledge in system internals for one or more of: Windows, macOS, Android, Linux, or iOS
  • Knowledge with machine code in one or more architectures (x86, x64, ARM, MIPS, other)
  • Knowledge with multiple file formats
  • Experience creating host or network based signatures (Yara, ClamAV, Suricata)
  • Experience developing parsers or decoders based on malware analysis
  • Experience analyzing and decoding network traffic
  • Experience in at least one of PHP, Python, C++, or Java
  • BA/BS in Computer Science or 3+ years similar work experience
  • Experience with campaign tracking, threat intelligence, and TTPs of advanced actors
  • Experience with relational databases and SQL
  • Experience analyzing and processing large data sets
  • Demonstrated ability to work cross-functionally with different teams
  • Knowledge with multiple file formats (PE, ELF, APK, OLE, PDF, etc.)
Facebook is proud to be an Equal Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.Facebook is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.


Back to top