Posted 14 days ago
Facebook’s Product Security team focuses on detection, prevention, and mitigation of risk that is inherent in building software -- whether that means vulnerability research or building software. Product Security Engineers provide guidance and tooling to engineering and product teams that help minimize the security and privacy risk for over 3 billion of our users. The scale, diversity, and importance of the products we secure is an inspiring mission -- come help us make life hard for the bad guys!Facebook’s Product Security team is hiring security interns focused in several areas:Web Security: focused on securing web applications/APIs and ensuring we have robust architectural browser protections. Web Security Engineers on Product Security team work on a wide range of projects in PHP, Python, Perl, Ruby, etc.Mobile Security: focused on securing an ecosystem of mobile applications and platform security for Android (Java, Kotlin) and iOS (Swift, Objective-C), including custom hardware devices. Native Security: focused on lower level systems which are closer to the hardware and physical components of computers. Native Security Engineers on Product Security team work on a wide range of projects in the C/C++/Rust space.Infrastructure Security: focused on our facebook infrastructure. Ensuring that security is engaged before building (e.g. threat modeling/design review), across the lifecycle (drift management), to asset/program retirement.While these roles have different focus areas, the core responsibilities are relatively universal:Security Reviews: perform manual design and implementation reviews of products and services that make up the Facebook ecosystem.Automated Analysis and Secure Frameworks: build automation (static and dynamic analysis) and frameworks with software engineers that enable Facebook to scale consistently across all of our products.Developer Guidance: provide guidance and education to developers that help prevent the authoring of vulnerabilities.Bug Bounty: help provide technical guidance to our world class bug bounty program and researchers.Industry Impact: push the industry forward through conference talks and open source projects to contribute broadly to security for the world, and also interact w/ security researchers via bug bounty programsThese engineering roles will partner closely with the following teams:Secure Application Frameworks: a team focused on building libraries, frameworks, and platforms that enable developers to write secure software and enable security engineers to perform automated analysis at scale.Program Analysis: teams of software engineers who build static and dynamic analysis tools to detect and prevent security and privacy issues at scale Dedicated Security Partners: a team focused on partnering closely with Product teams within facebook and interfacing with Security Engineers within ProdSec to identify the riskiest areas for us to focus on.Product Teams: various teams across engineering that are focused on building services but need security guidance in order to build secure applications.If you’re passionate about security and helping secure products that billions of people use and trust, come join us at Facebook!

  • Strong communication and collaboration
  • Project management and execution
  • Self-starter that defaults to action and identifies key areas to focus on

  • Must be in the process of obtaining a BS, MS, PhD in Computer Science or related field
  • Must return to the degree program after the completion of the internship/co-op
  • Must obtain work authorization in the country of employment at the time of hire, and maintain ongoing work authorization during employment

  • Contributions to the security community (public research, blogging, presentation, open source, etc.)
  • Experience with exploiting common security vulnerabilities
  • Experience writing software that enables security processes

Facebook's mission is to give people the power to build community and bring the world closer together. Through our family of apps and services, we're building a different kind of company that connects billions of people around the world, gives them ways to share what matters most to them, and helps bring people closer together. Whether we're creating new products or helping a small business expand its reach, people at Facebook are builders at heart. Our global teams are constantly iterating, solving problems, and working together to empower people around the world to build community and connect in meaningful ways. Together, we can help people build stronger communities - we're just getting started.

Facebook is proud to be an Equal Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.Facebook is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at
We're connecting diverse talent to big career moves. Meeting people who boost your career is hard - yet networking is key to growth and economic empowerment. We’re here to support you - within your current workplace or somewhere new. Upskill, join daily virtual events, apply to roles (it’s free!).
Are you hiring? Join our platform for diversifiying your team
Product Security Engineer Intern, Mobile/Web/Native/Infra