Meta Seeks AI Security Engineers After Instagram Account Recovery Exploit

About the Role

In the wake of a significant security incident where attackers exploited Meta’s AI-assisted account recovery system to hijack over 20,000 Instagram accounts, the company is ramping up its defensive capabilities. This role is a direct response to that breach, focusing on hardening the High Touch Support (HTS) platform and similar machine-learning-driven recovery workflows. The position sits within Meta’s integrity and security engineering teams, tasked with designing and implementing safeguards that prevent unauthorized password resets and account takeovers. Candidates will work at the intersection of artificial intelligence, cybersecurity, and large-scale platform reliability, ensuring that automated support systems cannot be weaponized by malicious actors.

Key Responsibilities

• Audit and redesign AI-powered account recovery pipelines to eliminate vulnerabilities like the HTS flaw that enabled mass account hijacking.
• Develop adversarial testing frameworks to proactively probe machine learning models used in identity verification and support workflows.
• Collaborate with threat intelligence and incident response teams to analyze attack patterns and implement real-time detection rules.
• Build and maintain monitoring systems that flag anomalous password reset requests and account recovery attempts.
• Conduct code reviews and security assessments of internal tools that integrate with user authentication and support APIs.
• Create technical documentation and training materials to upskill cross-functional teams on secure AI deployment practices.
• Stay ahead of emerging threats by researching new attack vectors against AI-driven customer support and identity systems.

Requirements

• 5+ years of experience in cybersecurity engineering, with a focus on application security, identity, or anti-abuse systems.
• Strong programming skills in Python, Go, or similar languages, and familiarity with machine learning frameworks (PyTorch, TensorFlow).
• Deep understanding of authentication protocols (OAuth, SAML), account recovery flows, and common web vulnerabilities.
• Proven track record of analyzing and mitigating real-world attacks on large-scale consumer platforms.
• Experience with threat modeling, fuzzing, and building automated security testing pipelines for AI/ML services.
• Excellent communication skills and the ability to translate complex security risks to non-technical stakeholders.

Compensation & Benefits

• Competitive base salary with annual performance bonuses and equity grants.
• Comprehensive health, dental, and vision coverage for employees and dependents.
• Generous 401(k) matching and flexible spending accounts.
• Unlimited paid time off, parental leave, and wellness reimbursement programs.
• Access to on-site fitness centers, free meals, and commuter benefits (or remote work stipends).
• Continuous learning support through conference attendance, training budgets, and internal tech talks.

How to Apply

Interested candidates can apply directly via the Apply Now button on this page, which will redirect to the official Meta careers portal. The external listing contains full details on the application process and any additional screening steps.