Security Engineer, Identity and Access Management (IAM)
Posted a month ago
- London, Greater London
- Any
- External
- Expires In 2 months
Security Engineer, Identity and Access Management (IAM)
Meta's security team is the central engine driving data and systems security at the company, supporting Meta and all of its family of apps. The org is responsible for inhibiting malicious actors from compromising our environment, preventing, detecting and responding to them before they do damage if they do, ensuring we are maintaining the protections we say we will, and engaging with the community to help those outside the company learn from the work we do. We work across all parts of the company, from the corporate infrastructure to production to external services, interfacing with nearly every team in the company.The Security Engineer should have prior experience with security policy, risk, and access management disciplines and be comfortable collaborating with cross-functional teams. This position will be responsible for identifying and enforcing solutions to control access to internal systems. An ideal candidate is someone that has technical knowledge of the broad aspects of information security, and is able to identify deficiencies in the access management space. This role specifically needs deep conceptual understanding of the IAM concepts that can be applied to our internal IAM solutions. This role requires a broad mix of security, technical, coding and communication skills coupled with a strong desire to learn.
Security Engineer, Identity and Access Management (IAM) Responsibilities
Design and implement systems that enhance the security of Facebook’s Identity & Access Management Systems
Build and maintain tools that improve the Identity and Access Management posture at Meta.
Conduct design and code reviews Analyze and improve efficiency, scalability, and stability for assigned product area and/or systems
Identify and drive changes as needed for assigned codebase, product area and/or systems
Interface with other teams to incorporate their innovations and vice versa
Articulate security findings to internal to a variety of stakeholders, including both technical and non-technical stakeholders
Provide defensible recommendations on technical, physical and administrative control implementations based on findings while balancing the cost versus benefits
Participate in the development and oversight of corrective actions relating to security issues
Participate in cross-functional, team, and status review meetings
Recommend process improvement and strategic initiatives as related to security.
Minimum Qualifications
Experience in writing custom scripts in Python/C++ and PHP/Hack
BSc in Computer Science related field, or equivalent experience
Experience building large-scale distributed systems or similar experience
8+ years of software development experience
Experience in assessing security deficiencies in first-party/internal information systems and recommending mitigating controls
5+ years of proven experience working on Information Security teams or conducting Information Security consulting engagements
Knowledge of evaluating systems architectural designs, data-flow diagrams and technical security implementations, particularly in context of access management in different geographical locations.
Experience with developing security reporting and recommendations that are meaningful, defensible and actionable for a variety of audiences
Ability to manage competing priorities and simultaneous projects in a fast paced environment with little supervision
Strong communication skills - both written and verbal, interpersonal skills, and ability to work cross-functionally with various teams
Preferred Qualifications
Program and project management skills
Experience in the IAM domain in a cloud based infrastructure environment
Good grasp of SOX, SOC2, NIST, PCI, ISO, and other security regulations
Strong analytical and problem-solving skills, including a basic understanding of data analysis techniques
Start preparing
Start preparing
Learn about how to prepare for your interview with our interview guide, tips, and interactive experiences.
Visit interview prep
Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today—beyond the constraints of screens, the limits of distance, and even the rules of physics.
Meta is committed to providing reasonable support (called accommodations) in our recruiting processes for candidates with disabilities, long term conditions, mental health conditions or sincerely held religious beliefs, or who are neurodivergent or require pregnancy-related support. If you need support, please reach out to ##### .
Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. You may view our Equal Employment Opportunity notice here.
We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. We may use your information to maintain the safety and security of Meta, its employees, and others as required or permitted by law. You may view Meta Pay Transparency Policy,
Equal Employment Opportunity is the Law
notice, and Notice to Applicants for Employment and Employees
by clicking on their corresponding links. Additionally, Meta participates in the E-Verify program
in certain locations, as required by law.
Meta is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at ##### .
#J-18808-Ljbffr
Meta's security team is the central engine driving data and systems security at the company, supporting Meta and all of its family of apps. The org is responsible for inhibiting malicious actors from compromising our environment, preventing, detecting and responding to them before they do damage if they do, ensuring we are maintaining the protections we say we will, and engaging with the community to help those outside the company learn from the work we do. We work across all parts of the company, from the corporate infrastructure to production to external services, interfacing with nearly every team in the company.The Security Engineer should have prior experience with security policy, risk, and access management disciplines and be comfortable collaborating with cross-functional teams. This position will be responsible for identifying and enforcing solutions to control access to internal systems. An ideal candidate is someone that has technical knowledge of the broad aspects of information security, and is able to identify deficiencies in the access management space. This role specifically needs deep conceptual understanding of the IAM concepts that can be applied to our internal IAM solutions. This role requires a broad mix of security, technical, coding and communication skills coupled with a strong desire to learn.
Security Engineer, Identity and Access Management (IAM) Responsibilities
Design and implement systems that enhance the security of Facebook’s Identity & Access Management Systems
Build and maintain tools that improve the Identity and Access Management posture at Meta.
Conduct design and code reviews Analyze and improve efficiency, scalability, and stability for assigned product area and/or systems
Identify and drive changes as needed for assigned codebase, product area and/or systems
Interface with other teams to incorporate their innovations and vice versa
Articulate security findings to internal to a variety of stakeholders, including both technical and non-technical stakeholders
Provide defensible recommendations on technical, physical and administrative control implementations based on findings while balancing the cost versus benefits
Participate in the development and oversight of corrective actions relating to security issues
Participate in cross-functional, team, and status review meetings
Recommend process improvement and strategic initiatives as related to security.
Minimum Qualifications
Experience in writing custom scripts in Python/C++ and PHP/Hack
BSc in Computer Science related field, or equivalent experience
Experience building large-scale distributed systems or similar experience
8+ years of software development experience
Experience in assessing security deficiencies in first-party/internal information systems and recommending mitigating controls
5+ years of proven experience working on Information Security teams or conducting Information Security consulting engagements
Knowledge of evaluating systems architectural designs, data-flow diagrams and technical security implementations, particularly in context of access management in different geographical locations.
Experience with developing security reporting and recommendations that are meaningful, defensible and actionable for a variety of audiences
Ability to manage competing priorities and simultaneous projects in a fast paced environment with little supervision
Strong communication skills - both written and verbal, interpersonal skills, and ability to work cross-functionally with various teams
Preferred Qualifications
Program and project management skills
Experience in the IAM domain in a cloud based infrastructure environment
Good grasp of SOX, SOC2, NIST, PCI, ISO, and other security regulations
Strong analytical and problem-solving skills, including a basic understanding of data analysis techniques
Start preparing
Start preparing
Learn about how to prepare for your interview with our interview guide, tips, and interactive experiences.
Visit interview prep
Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today—beyond the constraints of screens, the limits of distance, and even the rules of physics.
Meta is committed to providing reasonable support (called accommodations) in our recruiting processes for candidates with disabilities, long term conditions, mental health conditions or sincerely held religious beliefs, or who are neurodivergent or require pregnancy-related support. If you need support, please reach out to ##### .
Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. You may view our Equal Employment Opportunity notice here.
We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. We may use your information to maintain the safety and security of Meta, its employees, and others as required or permitted by law. You may view Meta Pay Transparency Policy,
Equal Employment Opportunity is the Law
notice, and Notice to Applicants for Employment and Employees
by clicking on their corresponding links. Additionally, Meta participates in the E-Verify program
in certain locations, as required by law.
Meta is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at ##### .
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
