Technical Program Manager, Security

About the Technical Program Manager, Security Role at Meta

The Security, Risk & Assurance (SR&A) team at Meta proactively identifies, assesses, and mitigates security, risk, and compliance challenges across Security, Integrity, Investigations (SI2) personnel, tools, operations, and vendors. Our mission is to ensure the integrity, privacy, and resilience of systems and processes, ultimately increasing user safety and legal compliance. The broader SI2 organization is responsible for the compliance, operation, and counsel of Meta’s high-severity harms and legal obligations.

Meta is seeking to hire a Technical Program Manager, Security. This is a critical, individual contributor role (IC) focused on providing dedicated technical program management support to define, execute, and scale security initiatives within the legal compliance technical ecosystem. This role will manage and de-conflict executive demands in an environment where effective prioritization is critical. This role emphasizes the protection of user data, the implementation of technical controls, and the proactive management of Information Security Risk Management to prevent fraud and abuse.

Technical Program Manager, Security Responsibilities

• Program Ownership: Define and own the security program strategy and framework (Identify, Prevent, Detect, Respond+Recover) with a specific focus on Meta's legal investigations, operations and compliance technical ecosystem.
• Fraud & Abuse Prevention & Threat Intelligence: Lead and manage technical initiatives to prevent and mitigate fraud and abuse within Meta’s Intake and Disclosure programs. This includes developing detections, implementing signal development strategies, and incorporating threat intelligence into defensive measures and projects like Requestor & Recipient Verification (RRV).
• Information Security Risk Management & Controls: Drive the Information Security Risk Management lifecycle. This involves collaborating with engineering and security SMEs to interpret and implement relevant regulations, identify, document, and test critical security controls, and deploy effective technical and security controls across SI2 surfaces.
• Incident Management: Manage technical and fraudulent incidents and issues to resolution through the SEV process, coordinating with engineering, security, and legal teams.
• Process Improvement: Drive process improvements to ensure security programs are efficient, scalable, and reliable, and maintain cross-functional alignment.
• Security Assessments: Coordinate and track security assessments, vulnerability testing, and mitigation plans to close identified technical vulnerabilities.
• Stakeholder Engagement: Engage cross-functional stakeholders (e.g., Legal, GRC, Engineering, Operations) on security, risk, and compliance requirements, and prepare and present program updates to leadership.

Minimum Qualifications

• 7+ years of experience in program/project management within a technical or security domain.
• Bachelor's degree in Computer Science, Engineering, Information Technology or equivalent technical experience.
• Demonstrated knowledge and experience with security technologies, compliance frameworks, and risk management principles.
• Experience managing technical incidents and issue resolution workflows.
• Demonstrated experience communicating between technical and non-technical audiences using collaborative tools and cross-functional collaboration skills.

Preferred Qualifications

• Relevant professional certifications such as Certified Information Systems Security Professional, Certified Information Security Manager, Certified in Risk and Information Systems Control, CompTIA Cybersecurity Analyst or Certified Fraud Examiner.
• Experience in a role with similar titles such as Security Delivery Manager, Security Officer, or Threat Intelligence Program Manager.
• Proven experience implementing technical solutions for fraud/abuse prevention, including working with detection engineering, security signals, or threat intelligence.
• Advanced knowledge of security frameworks (e.g., National Institute of Standards and Technology, ISO 27001, Control Objectives for Information and Related Technologies) and experience in leading audit or risk assessment readiness efforts.
• Experience working directly with engineering and legal teams to implement technical security controls.

About Meta

Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today—beyond the constraints of screens, the limits of distance, and even the rules of physics.

Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law.

Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@meta.com.

Key skills/competency

• Technical Program Management
• Information Security
• Risk Management
• Fraud Prevention
• Incident Response
• Compliance Frameworks
• Security Controls
• Threat Intelligence
• Stakeholder Management
• Cross-functional Collaboration