CrawlJobs Logo
Meta Logo Meta · IT - Software Development

Detection & Response Security Engineer, Intern

United Kingdom, London · Job Posted January 23, 2026
Apply Position
Job Link Share

Job Description

Meta Security is looking for Security Engineer Interns with experience in Incident Response and Threat Intelligence research. You’ll work along-side Incident Responders, Intelligence Researchers and Offensive Security Engineers to identify and respond to internal and external attacks against Meta Systems. You will be working across engineering teams supporting the development of incident response automation, and threat tracking systems leveraging both industry-standard solutions as well as custom in-house tooling and datasets. Security Engineer Interns will also gain hands-on experience with tracking and responding to threats targeting Meta’s employees and infrastructure. This internship, starting Summer 2026, offers a wealth of challenging and technically stimulating security problems. We encourage self-starters and passionate security enthusiasts to apply and contribute to our mission.

Job Responsibility

  • Triage security alerts and support incident response in a cross-functional environment, driving incident resolution for internal and external threats
  • Work on cross-functional projects to improve our capabilities to effectively detect and respond to security incidents
  • Analyze and hunt for attacker techniques (through log analysis from various sources such as host and network logs) to identify potential threats and detection ideas
  • Develop actions and workflows in our automation systems to improve the alert triage process (Python, SQL)
  • Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
  • Design and implement attack testing automation to validate detection coverage
  • Track threat clusters posing threats to Meta’s infrastructure and employees
  • Improve the tooling of threat cluster tracking and intelligence data integration to existing systems and various intelligence feeds

Requirements

  • Currently has, or is in the process, of obtaining a Bachelor's degree or equivalent experience in Computer Science or related field
  • Experience analyzing network and host-based security events
  • Knowledge of networking technologies, specifically TCP/IP and the related protocols
  • Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux
  • Coding/scripting experience in one or more general purpose languages
  • Experience with attacker tactics, techniques, and procedures
  • Must obtain work authorization in country of employment at the time of hire, and maintain ongoing work authorization during employment
  • Intent to return to full-time degree program after completion of the internship

Nice to have

  • Experience in Detection & Response Engineering or similar Security Engineering role
  • Experience designing systems used for responding to external and/or insider threats
  • Experience building automations and integrations using SOAR platforms
  • Background in security-focused software engineering, designing large scale systems and data pipelines, or offensive security
  • Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems
  • Experience with anomaly detection applicable to the insider threat detection space
  • Familiarity with campaign tracking techniques and skills to convert the tracking results to long term countermeasures
  • Familiarity with threat modeling framework, such as Diamond Model and/or MITRE ATT&CK framework
  • Experience with intelligence-driven threat hunting to spot suspicious activities and identify potential risks, and experience with building notebooks to automate such hunts
  • Broad knowledge across the Security domain, as well as deep focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Offensive Security Testing, Detection and/or Response tooling development
Meta - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Detection & Response Security Engineer, Intern

8 matching positions

Senior Security Engineer, Detection and Response

As a Senior Security Engineer on the Detection & Response team, you will play a ...
Location
Location
United States; Canada
Salary
Salary:
156000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in security technical engineering roles
  • 3+ years focused on security operations, detection engineering or incident response
  • Hands-on experience with detection engineering and automation, including SIEMs, SOAR platforms, behavior analytics, and Detection-as-Code workflows
  • Strong understanding of modern attacker techniques and how they apply to cloud-native, SaaS, and identity-centric environments
  • Experience with endpoint, runtime, and forensic tools across multiple operating systems
  • Knowledge of cloud environments (e.g., AWS, GCP) and security best practices for cloud-native systems
  • Proficiency with scripting and infrastructure tools (e.g., Python, Bash, Terraform, CI/CD pipelines) to support automation and internal tooling
  • Strong written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Design, build, and continuously improve threat detections across 1Password’s infrastructure, products, internal tools, and corporate environments
  • Lead and support security incident response activities, including investigation, containment, remediation, and post-incident learning
  • Apply threat intelligence and knowledge of attacker TTPs to detection development, threat hunting, alert triage, and response prioritization
  • Collaborate with Security, Infrastructure, and IT teams to improve security visibility, logging quality, and response readiness
  • Use automation, scripting, and Detection-as-Code practices to scale detection and response workflows and improve reliability
  • Own end-to-end security projects aligned with Detection & Response initiatives and broader security strategy
  • Participate in a shared on-call rotation and support high-severity incidents as needed
  • Contribute to operational maturity through playbooks, mentoring, tabletop exercises, audits, and cross-functional initiatives
What we offer
What we offer
  • Health benefits
  • Dental benefits
  • 401k
  • RRSP
  • Generous PTO
  • Equity grant
  • Incentive programs
  • Maternity and parental leave top-up programs
  • RSU program for most employees
  • Retirement matching program
  • Fulltime
Read More
Arrow Right

Security Engineer - Detection Engineering, Surface Coverage

Meta Security is looking for a Security Engineer with experience in threat model...
Location
Location
United States , Bellevue
Salary
Salary:
122000.00 - 181000.00 USD / Year
meta.com Logo
Meta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years of experience in Detection and Response Engineering or similar Security Engineering role
  • Bachelor's degree or equivalent experience in Cyber Security
  • Experience building complex automations and integrations using Security Orchestration, Automation and Response platforms
  • Experience designing systems used for responding to both external and insider threats
  • Experience analyzing network and host-based security events
  • Knowledge of networking technologies, specifically Transmission Control Protocol (TCP)/Internet Protocol (IP) and the related protocols
  • Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux
  • Coding/scripting experience in one or more general purpose languages
  • Experience with attacker tactics, techniques, and procedures
Job Responsibility
Job Responsibility
  • Lead cross-functional projects to improve our functionalities to effectively detect and respond to security incidents
  • Review security architecture of large-scale custom and commercial systems and under your own initiative propose logging, detection and prevention controls
  • Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
  • Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas
  • Build response workflows and actions that auto-resolve false positives and provide context scaling our capacity to investigate
  • Support security incident response in a cross-functional environment and drive incident resolution
  • Design and implement attack testing automation to validate detection coverage
  • Build logging pipelines using our custom datasets and infrastructure
What we offer
What we offer
  • bonus
  • equity
  • benefits
Read More
Arrow Right

Senior Detection and Response Engineer

We are looking for a Senior Detection and Response Engineer to help protect the ...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
activision.com Logo
Activision
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in computer science or related field or equivalent experience
  • Extensive experience in security operations, threat detection engineering or incident response
  • Experience using AI/ML techniques in security operations (alert enrichment, behavioral analytics, anomaly detection, automated investigations)
  • Strong understanding of the modern threat landscape, common tactics and attacker techniques
  • Experience working with security monitoring platforms (SIEM, EDR or similar)
  • Scripting or programming skills (Python, PowerShell or similar) to automate security workflows
  • Strong written and verbal communication skills, and an ability to collaborate across teams
  • Fluent in English
  • Experience implementing or operating SOAR platforms
  • Must be willing to participate in the on-call rotation
Job Responsibility
Job Responsibility
  • Detect, investigate and respond to security incidents across cloud, corporate and production environments
  • Design and improve detection capabilities and incident response workflows
  • Develop automation through SOAR platforms and scripting
  • Enhance alert triage and investigations using AI/ML-driven security analytics
  • Collaborate with engineering teams to improve security visibility and response capabilities
  • Share knowledge through internal documentation, playbooks and team collaboration
  • Participate in an on-call rotation for incident response
Read More
Arrow Right

Security Engineer Graduate Intern

Sigma’s early career program is the launchpad for the next generation of enginee...
Location
Location
United States , San Francisco
Salary
Salary:
50.00 USD / Hour
sigmacomputing.com Logo
Sigma Computing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Currently enrolled in a university graduate degree program in the U.S with a graduation date of December 2026 or later
  • Able to intern from June 2026 through early September 2026 (12 weeks)
  • Legally authorized to work in the US during the Summer 2026 program
  • Located within the San Francisco Bay Area or willing to relocate during the internship
  • Able to work 40 hours per week (full-time) in a hybrid work model with a minimum of 4 days in office
  • Currently pursuing a Master’s degree in Computer Science, Cybersecurity, or a related field, with the intent to return to school following the internship for at least one more term
  • A solid understanding of networking (TCP/IP, DNS, HTTP) and at least one operating system (Linux or macOS)
  • The ability to parse and analyze logs from multiple sources to identify malicious patterns and security events
  • Comfort with scripting or automation using Python, SQL, or similar languages
Job Responsibility
Job Responsibility
  • Triage and investigate security alerts from a diverse stack including SIEM, EDR, WAF, and DLP platforms
  • Help refine these systems by tuning "detections-as-code" to reduce noise and improve signal quality
  • Conduct hypothesis-driven hunts across telemetry data (cloud, identity, and network) to uncover emerging threats that may have bypassed automated defenses
  • Research attacker TTPs and use the MITRE ATT&CK framework to develop and deploy new detection logic
  • Analyze cloud configurations and IAM policies to identify misconfigurations, support vulnerability remediation, and validate security best practices
  • Investigate suspicious macOS activity, analyze malicious emails, and support internal phishing simulation programs
  • Contribute to the team’s knowledge base by documenting processes, findings and creating playbooks that improve the broader team's response capabilities
What we offer
What we offer
  • Hourly rate
  • Commuter bonus
  • Relocation bonus
  • Equity
  • Generous health benefits
  • Flexible time off policy
  • Paid bonding time for all new parents
  • Traditional and Roth 401k
  • Commuter and FSA benefits
  • Lunch Program
  • Fulltime
Read More
Arrow Right

Security Engineering Manager – Detection & Response

I have partnered with one of the world’s leading hedge funds who is hiring a sen...
Location
Location
United States , New York City
Salary
Salary:
500000.00 - 700000.00 USD / Year
thisisiceberg.com Logo
Iceberg Cyber Security
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated leadership in high-severity incidents with strong judgement and crisp communication
  • Technical depth in threat hunting, detection engineering, incident response, forensics, and threat intelligence
  • Experience building or running monitoring/detection programs (and improving signal quality over time)
  • Comfortable partnering with compliance and governance while maintaining operational effectiveness
  • Thoughtful, practical approach to AI in security operations (not buzzword-led
  • not AI-averse)
Job Responsibility
Job Responsibility
  • Lead incident response, threat hunting, detection engineering, and forensics across the organisation
  • Build and advance internal monitoring and auditing frameworks
  • Develop and execute a vision for where our SecOps program goes next
  • Act as a senior escalation point during incidents, communicating clearly with leadership and stakeholders
  • Drive pragmatic adoption of AI-enabled approaches in detection/response (build vs buy, risks and controls)
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Security Operations

The senior security engineer role provides a unique opportunity to shape the sec...
Location
Location
United States , REMOTE; SAN FRANCISCO; ROSEVILLE; LEHI; WEST PALM BEACH; IRVINE
Salary
Salary:
146000.00 - 170000.00 USD / Year
goodleap.com Logo
GoodLeap
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences
  • Expertise in security event management, monitoring, threat hunting, incident response, playbook creation, orchestration/automations
  • Experience with threat modeling methodologies
  • Expertise with EDR solutions/platforms, such as CrowdStrike, S1, Palo Alto Cortex EDR
  • Experience with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus)
  • Proven ability to establish credibility and build trust with business, engineers, and operational staff
  • Experience designing, configuring, and implementing security and fraud monitoring for core enterprise systems, e.g., ERP, HCM, Salesforce
  • Experience working with and creating solutions based AI and ML toolsets – e.g., creation of AI skills, agents, MCP clients, vibe coding
  • Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases
  • Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK
Job Responsibility
Job Responsibility
  • Lead, participate in, and contribute to security and fraud monitoring, detection, and response activities, inclusive of investigations, threat hunting,etc. Create playbooks for specific incident response scenarios
  • Identify potential misuse and abuse cases in enterprise systems, propose solutions to detect these scenarios, and identify and implement monitoring and detection solutions for such scenarios
  • Support or develop components of the security analytics platform
  • Support embedded (product) security team
  • Support general security operations team with vulnerability management, tools management, and more
What we offer
What we offer
  • bonus
  • equity
  • Fulltime
Read More
Arrow Right
New

Security Engineer

As a Security Engineer focused on Product Security and AI, you will help secure ...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
dialpad.com Logo
Dialpad
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in application security, product security, security engineering, or software engineering with a strong security focus
  • Strong understanding of modern application security principles across web applications, APIs, authentication, authorization, and cloud-native systems
  • Experience conducting threat modeling, secure design reviews, and technical risk assessments
  • Experience finding and prioritizing vulnerabilities using manual testing, code review, and security tooling
  • Familiarity with secure SDLC practices and experience embedding security into engineering workflows
  • Strong understanding of common classes of product risk such as injection, access control failures, secrets exposure, insecure deserialization, SSRF, and supply chain risk
  • Practical knowledge of securing AI-enabled products, including LLM-related risks, prompt injection, data leakage, insecure tool use, model abuse, and third-party AI integrations
  • Ability to write clear technical guidance and influence teams without creating unnecessary friction
  • Strong communication skills and the ability to work cross-functionally with engineering, product, legal, and compliance stakeholders
  • Comfort balancing security rigor with product velocity and business priorities
Job Responsibility
Job Responsibility
  • Partner with engineering teams to design and review secure architectures for customer-facing products, APIs, integrations, and internal platforms
  • Lead product security reviews, threat modeling sessions, and design assessments for new features and major platform changes
  • Identify, validate, and drive remediation of application security issues across web, backend, cloud, mobile, and API surfaces
  • Build and improve security guardrails in the software development lifecycle, including secure defaults, testing, and automation
  • Define security requirements and review controls for AI and Agentic features, including prompt handling, data exposure risks, abuse cases, and third-party AI services
  • Collaborate with engineering teams on secure coding practices, vulnerability management, and risk-based remediation
  • Improve product and AI security telemetry, detection opportunities, and response readiness in partnership with detection and infrastructure teams
  • Contribute to security standards, reference architectures, and developer-facing guidance that scale across teams
  • Support security reviews for external integrations, partner ecosystems, and features that handle sensitive customer data
  • Help investigate product and application security incidents and translate learnings into durable engineering improvements
What we offer
What we offer
  • Work at the center of the AI transformation in business communications
  • Build and ship agentic AI products that are redefining how companies operate
  • Join a team where AI amplifies every employee's impact
  • Competitive salary
  • Comprehensive benefits
  • Real opportunities for growth
  • Cutting-edge AI tools
  • Robust training program
  • Inclusive office environment
  • Great Place to Work culture
  • Fulltime
Read More
Arrow Right
New

Senior Information Security Engineer

Wells Fargo is seeking a Senior Information Security Engineer
Location
Location
India , HYDERABAD
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 17, 2026
Flip Icon
Requirements
Requirements
  • 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • Bachelor's or master’s degree in relevant Technology /Security discipline
  • One or more professional certifications such as Power BI, Power Apps, Python, Pyspark and SQL certifications
  • Strong written communication: concise docs, decisions, and stakeholder updates
  • Risk-based thinking: pragmatic security that balances speed and risk reduction
  • Strong Jira and workflow management experience (portfolio views, aging controls, dependency management)
  • Ability to coordinate completion of multiple tasks and meet aggressive time frames
  • Ability to influence across all organizational levels, particularly senior/executive management
  • Experience in technology consulting companies, global financial institutions or experience in US banking sector is preferred
  • Awareness of industry standards and their applicability to financial organizations
Job Responsibility
Job Responsibility
  • Lead or participate in computer security incident response activities for moderately complex events
  • Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
  • Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
  • Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
  • Review and correlate security logs
  • Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
  • Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
  • Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
  • Develop and maintain ETL pipelines for ingestion from enterprise data sources
  • Transform and load data into reporting and analytics platforms
  • Fulltime
Read More
Arrow Right