View Our Website View All Jobs

Vulnerability Analyst Job Description



Facebook is seeking an experienced Vulnerability Analyst to join the Enterprise Infrastructure & Security organization. This position will be responsible for supporting the program lead with vulnerability related activities. This includes investigating, assessing and monitoring potential security vulnerabilities, tracking remediation progress and creating actionable reports for cross-functional teams. An ideal Vulnerability Analyst is someone that has a solid understanding of the IT, Cyber Security and Vulnerability Management and can apply that knowledge to solve problems at the scale of Facebook. This role is located at our headquarters in Menlo Park, CA. 



  • Support program lead with detection, assessment, communication, remediation coordination of security vulnerabilities

  • Support engineers in troubleshooting and gathering data required to perform remediation to meet SLAs

  • Analyze vulnerability reports to ensure data accuracy, to provide technical vulnerability analysis and determine remediation options

  • Provide metrics and reporting on changes to the state of system security, threat, vulnerability and patch management

  • Monitor public and proprietary sources for vulnerability information

  • Maintain and compose operational process documentation regarding program executio

Minimum Qualifications


  • 5+ years experience in Information Technology, Cyber Security and Vulnerability Management space

  • Experience with various vulnerability assessment solutions, vulnerability management, patch management, software development lifecycle (SDLC), host based security systems, networking, systems administration, application development, cloud computing and information security best practices

  • Strong technical understanding of CVSS, OWASP Top 10 and Vulnerability Exploitability ratings

  • Intermediate to Proficient in a scripting languages (i.e. SQL, Python, PHP, etc.)

  • Experience preparing vulnerability data and reports for both technical and executive audiences

  • Previous experience working in large scale environments with diverse technologies

  • Strong verbal and written communication skills

  • Strong attention to detail, data accuracy, and data analysis

  • Self-motivated and operates with a high sense of urgency and a high level of integrity

  • Experience independently leading projects to completion

  • Experience working with limited and ambiguous data 

  • Experience collaborating with various levels of leadership, engineers and cross-functional teams

  • Experience working with global teams across different regions and timezones 


Bachelor's Degree or equipvalent experience; Computer Science, Informtation Security, GRC (Security Governance Risk and Compliance)

Read More

Apply for this position

Apply with Indeed
We've received your resume. Click here to update it.
Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file