Offensive Security Engineer (University Grad)

Offensive Security Engineer (University Grad)
Location pin icon
Meta’s Offensive Security Group is looking for an Offensive Security Engineer that can execute tactical, offensive assessments across our environments. Our objective is to preempt the adversary in attacking Meta, and make the company, its employees, and its users safer and more secure. This individual should have knowledge across the attack lifecycle and a demonstrated capacity to understand, design and execute security assessments against various technologies and stacks. Candidates are expected to support delivering technology-oriented assessments that positively benefit the overall security posture of the organization. This role requires a desire to help drive fixes after testing cycles, both as short term mitigations and long term improvements.
Offensive Security Engineer (University Grad) Responsibilities
  • Offensive Security Assessments: Perform security assessments ranging from Red Team operations, threat-based evaluations, and vulnerability research and exploitation against both the unique systems and technologies used at Meta, as well as approved 3rd party software and vendors.
  • Security Guidance: Provide threat-based guidance and education to the overall security organization through offensive security, with audiences including software engineers, business and technical leaders.
  • Adversary TTPs: Research, develop, and execute adversary TTPs across the range of the attack lifecycle.
Minimum Qualifications
  • Currently has, or is in the process of obtaining a Bachelor's or Master's degree in Computer Science, Computer Engineering, relevant technical field, or equivalent practical experience. Degree must be completed prior to joining Meta.
  • Proven understanding of the attack lifecycle, and offensive security concepts in at least one of Red Team operations, Purple Team engagements, Vulnerability Research, and/or Exploitation.
  • Experience with exploiting common security vulnerabilities and bypassing security controls
  • Knowledge of server (Linux, Windows) and client (Windows, macOS, Linux) operating systems.
  • Experience in at least PHP/Hack, Python, C/C++, Go, or Java.
  • Must obtain work authorization in country of employment at the time of hire, and maintain ongoing work authorization during employment
Preferred Qualifications
  • Contributions to the security community (public research, blogging, presentations, bug bounty, tooling, etc.)
  • Track record of participation in capture the flag (CTF) competitions.
  • OSCP certification, or equivalent.
About Meta
Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today—beyond the constraints of screens, the limits of distance, and even the rules of physics.
Meta is committed to providing reasonable support (called accommodations) in our recruiting processes for candidates with disabilities, long term conditions, mental health conditions or sincerely held religious beliefs, or who are neurodivergent or require pregnancy-related support. If you need support, please reach out to
$105,000/year to $137,000/year + bonus + equity + benefits

Individual pay is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base salary, Meta offers benefits. Learn more about benefits at Meta.
Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. You may view our Equal Employment Opportunity notice here. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. We may use your information to maintain the safety and security of Meta, its employees, and others as required or permitted by law. You may view Meta Pay Transparency Policy, Equal Employment Opportunity is the Law notice, and Notice to Applicants for Employment and Employees by clicking on their corresponding links. Additionally, Meta participates in the E-Verify program in certain locations, as required by law.

Meta is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at
Let us know you're interested.
Share your resume or LinkedIn profile with our recruiting team and create personalized job alerts.