The Reality Labs Trust Security team secures Meta's Reality Labs devices from factory to user, ensuring threat resilience and regulatory compliance across wearables, VR, and next-gen consumer electronics. We build and scale foundational security capabilities including cryptographic device provisioning, vulnerability management, and manufacturing security operations. The team works across diverse technology stacks (on-device firmware, backend infrastructure, AI automation) and collaborates with cross-functional partners to launch secure products at scale. We are looking for a Security Engineer to join the RL Trust Security team to own and drive the technical direction for securing Meta's devices across their full lifecycle. Your work covers device manufacturing security, cryptographic provisioning, vulnerability management, and regulatory compliance (FDA, EU CRA) for products used by millions.

Responsibilities

Influence and align the organization's vision and strategy, while engaging our teams to develop and deliver specific, multi-year roadmaps, programs, and projects. Ensure prioritization, resourcing, and timely delivery of this work within a changing business environment
• Own the technical strategy for securing wearable device bring-up: provisioning cryptographic identities at factory sites, enabling security features through Meta's Product Development Process (PDP), and ensuring only authorized devices can access Meta services
• Architect an agentic AI automation layer for vulnerability management that spans detection, triage, and remediation, across a large-scale multi-party codebase and thousands of third-party dependencies.
• Drive system design for SBOM (Software Bill of Materials) generation and end-to-end vulnerability lifecycle tooling that satisfies regulatory requirements including FDA pre-market cybersecurity guidance for connected devices and EU compliance obligations.
• Lead platform-level security improvements across a multi-product device portfolio, including cryptographic identity infrastructure modernization and DRM provisioning architecture upgrades
• Drive end-to-end security for manufacturing infrastructure: conduct threat modelling to prioritise risks, define infrastructure and cloud security controls and hardening standards, and establish detection and monitoring pipelines that provide continuous visibility into adversarial activity across factory locations.
• Partner with cross functional teams and contract manufacturing partners to drive alignment on security trade-offs and risk acceptance for device provisioning models.
• The work spans hardware cryptography, AI-native vulnerability remediation, and manufacturing security operations across Rust, C, C++, and Python. You will build systems that secure devices from silicon-level provisioning through end-of-life vulnerability patching.

Minimum Qualifications
• Experience developing and delivering information on program status for leadership
• B.S. or M.S. Computer Science, Engineering, or related technical discipline, or equivalent experience
• Experience leading and managing complex cross-functional programs
• Experience with exploiting common security vulnerabilities, remediation frameworks, AWS, Threat Modelling, Threat Detection, Security Incident Handling, Infrastructure Hardening
• 10+ years experience dealing with security issues web programming languages, development practices, and common bug patterns

Preferred Qualifications
• Experience writing software that enables security processes
• Demonstrated ongoing AI skill development (e.g., prompt/context engineering, agent orchestration) and staying current with emerging AI technologies
• Experience adhering to and implementing responsible, ethical AI practices (e.g., risk assessment, bias mitigation, quality and accuracy reviews)
• Experience contributing to the security community (public research, blogging, presentations, etc.)
• Demonstrated ability to integrate AI tools to optimize/redesign workflows and drive measurable impact (e.g., efficiency gains, quality improvements)
• Experience with tools and technologies: Rust, C, C++, Python, cryptographic key management and provisioning (HSMs, device identity infrastructure), Code signing, secure boot, and device attestation and SBOM tooling for regulatory compliance