Meta Seeks Cybersecurity Pros to Counter NSO Group Threats on WhatsApp

About the Role

A prominent technology company is expanding its security operations to counter advanced spyware threats targeting its messaging platform. This role focuses on detecting, analyzing, and disrupting spear‑phishing campaigns linked to the NSO Group, a surveillance vendor that continues to attempt unauthorized access to WhatsApp users despite a standing court injunction. The position sits within a dedicated threat intelligence and incident response unit, working closely with legal and engineering teams to protect billions of users worldwide.

Key Responsibilities

• Investigate and attribute spear‑phishing attempts that leverage social engineering to deliver malicious links outside the WhatsApp application.
• Reverse‑engineer attack chains, including 1‑click exploit delivery mechanisms, to understand and neutralize NSO‑linked tactics.
• Collaborate with internal legal teams to compile technical evidence for contempt proceedings and ongoing litigation against spyware vendors.
• Develop detection signatures and behavioral models to proactively block similar social‑engineering campaigns at scale.
• Monitor threat actor infrastructure and coordinate takedown efforts with industry partners and law enforcement.
• Produce actionable intelligence reports for executive leadership and cross‑functional security teams.
• Contribute to the hardening of client‑side and server‑side defenses to reduce the attack surface of the messaging platform.

Requirements

• 5+ years of experience in threat intelligence, incident response, or mobile security research, with a focus on advanced persistent threats.
• Deep understanding of iOS and Android security models, exploit mitigation, and mobile malware analysis.
• Proficiency in reverse‑engineering tools (e.g., IDA Pro, Ghidra) and scripting languages (Python, Bash).
• Familiarity with legal frameworks surrounding computer fraud, CFAA, and cross‑border evidence collection is a strong plus.
• Proven ability to communicate complex technical findings to both technical and non‑technical stakeholders.
• Experience working with large‑scale telemetry systems and threat intelligence platforms.

Compensation & Benefits

• Competitive base salary with performance‑based bonuses and equity grants.
• Comprehensive health, dental, and vision coverage for employees and dependents.
• Flexible work arrangements, including remote options and generous paid time off.
• Professional development budget for conferences, certifications, and continued learning.
• Access to cutting‑edge security labs and collaboration with world‑class researchers.

How to Apply

Interested candidates can apply directly via the Apply Now button on this page. The button will redirect to the official career portal where the full job description and application instructions are available.