Offensive Security Engineer Intern - Meta
Bellevue, WA
About the Job
Meta’s Offensive Security Group is looking for an Offensive Security Engineer Intern that can execute tactical, offensive assessments across our environments. You will work with one of the best offensive security teams in the world, making sure that the data we are trusted to protect is secured to the highest standard. Our objective is to preempt the adversary in attacking Meta, and make the company, its users, and its employees safer and more secure.The ideal candidate will have a persistent curiosity to understand not only how something works on a deep, technical level, but also how it can be used for unintended purposes as an attacker. This position will begin in Summer 2025 and offers a plethora of technically intriguing security challenges. Self starters and those with a strong passion for the security field are encouraged to apply!
RESPONSIBILITIES
Offensive Security Engineer Intern Responsibilities:
MINIMUM QUALIFICATIONS
Minimum Qualifications:
PREFERRED QUALIFICATIONS
Preferred Qualifications:
RESPONSIBILITIES
Offensive Security Engineer Intern Responsibilities:
- Perform security assessments consisting of vulnerability research and exploitation against both the unique systems and technologies used at Meta, as well as approved 3rd party software and vendors.
- Research, develop, and execute adversary TTPs across the range of the attack lifecycle.
- Provide threat-based guidance and education to the overall security organization through offensive security
- with audiences including business and technical leaders, and software engineers.
MINIMUM QUALIFICATIONS
Minimum Qualifications:
- Must be in the process of obtaining a BS or MS in Computer Science or related field
- Must obtain work authorization in country of employment at the time of hire, and maintain ongoing work authorization during employment
- Experience in high level scripting, coding or visualization.
- Experience with exploiting common security vulnerabilities and bypassing security controls.
- Familiarity in one or more of the following areas in security - Network security, Web, desktop and/or mobile application security, source code review, fuzzing and/or analysis, reverse engineering, exploit development and/or vulnerability research.
- Familiarity of the attack lifecycle, and offensive security concepts in at least one of Red Team operations, Purple Team engagements, Vulnerability Research, and/or Exploitation
PREFERRED QUALIFICATIONS
Preferred Qualifications:
- Intent to return to full-time degree program after completion of the internship.
- Contributions to the security community (public research, blogging, presentations, bug bounty, tooling, etc.)
- Track record of participation in capture the flag (CTF) competitions.
- OSCP certification, or equivalent.
Source : Meta