Security Analyst: Anti-Scraping Investigator

About Meta

Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today—beyond the constraints of screens, the limits of distance, and even the rules of physics.

Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment.

Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@meta.com.

Job Overview: Security Analyst: Anti-Scraping Investigator

Are you interested in solving complex problems that are geared towards improving the privacy of people using Meta's family of apps? Do you have an adversarial mindset and are excited about investigating and analyzing potential threats? Come join us at Meta! Meta is seeking a Security Analyst: Anti-Scraping Investigator to support the Anti-Scraping organization, with experience investigating and analyzing adversarial behavior and using intelligence to drive decision making; knowledge of privacy expectations and regulations; and, a track record of technical success. Meta is looking for someone who loves reimagining what's possible when it comes to detecting, researching, and disrupting attackers by investigating entities and analyzing data to uncover patterns of automated abuse. The team provides actionable insights upstream and works with our engineering teams to constantly implement solutions at scale through better automation strategies to make the internet a safer place for all. Candidates for this team must demonstrate a focus on action and an aptitude for identifying patterns within complex data, making rapid decisions, and adapting quickly based on outcomes. Successful applicants typically have a background in a quantitative field coupled with expertise in IT security, including bot detection/mitigation and web scraping. The role requires experience working with large datasets and proven proficiency in data-driven decision-making. Individuals should be results-oriented, self-motivated, and have a track record of using analytics to reduce platform abuse and enhance user experience.

Security Analyst: Anti-Scraping Investigator Responsibilities:

• Discover, detect, investigate, and respond to anti-scraping attacks targeting Meta’s products, including threat actor attribution and analysis. Document findings in detailed, concise, and comprehensive reports.
• Develop and execute technical solutions to proactively identify and mitigate scraping risks.
• Manage multiple simultaneous investigations, contribute to scaling the team, growing and supporting other investigators, and drive tooling and investigative technique improvements.
• Proactively look for currently undetected abuse by leveraging internal data, open-source intelligence, and cyber threat intelligence.
• Refine and track operational metrics, key performance indicators, and service level objectives to measure the effectiveness of anti-scraping efforts.
• Collaborate with cross-functional teams—including security engineers, analysts, policy, legal, and product partners—to address privacy and abuse challenges.
• Build and maintain collaborative relationships with internal stakeholders to maximize the impact of anti-scraping initiatives.
• Stay current on emerging scraping tactics, techniques, and procedures, and share insights with the broader security organization.
• Drive and lead exploration of the scraping ecosystem, understand the scraping enabled business models, and the most significant risks and harms of scraping to users.

Minimum Qualifications:

• Bachelors Degree in Computer Science, Data Engineering, Cyber Security or related field or equivalent technical work experience.
• 5+ years of investigative experience conducting technical and non-technical investigations of online threats and abuse.
• 3+ years experience with complex SQL queries to drive analysis and insights.
• 3+ years experience in leveraging intelligence in driving investigative and/or technical decision making.
• 3+ years experience conducting OSINT and attribution investigations.
• Experience with network analysis.

Preferred Qualifications:

• Experience with all source intelligence analysis to drive decision making.
• Experience with, and exposure to, Linux/Unix environment, PHP, Python, Java, or other programming/scripting languages, TCP/IP protocol stack, and a variety of operating systems.
• Experience applying data analytics to security risk analysis and investigations.
• Adversarial experience and understanding how threat actors manifest on the internet.
• Experience summarizing and communicating technical data to a non-technical audience.

Key skills/competency

• Anti-scraping
• Threat intelligence
• Data analysis
• SQL
• OSINT
• Network analysis
• Cyber security
• Adversarial mindset
• Privacy protection
• Automation strategy