- Refine and drive the design of Meta's organizational, procedural, and technological security controls within the context of the global regulatory frameworks applicable to Meta.
- Ensure compliance of IAM related controls for regulations including SOX, SOC2, PCI and ISO27001.
- Manage communication of policies, procedures, and processes to internal stakeholders regarding security and compliance best practices around applicable laws, regulations, and controls.
- Work with cross-functional teams to assess business and access workflows, review internal and external tools for risk concerns, address permission gaps, and improve data quality.
- Assess and drive improvements of internal Meta tools, technical capabilities, and business processes to improve technical enforcement of access management and enforcement principals by working with business and software engineering partners.
- Oversee operations team responsible for performing access reviews on a periodic basis of the company assets.
- Guide the development of administrative and enforcement tools, access controls, alerts and anomaly detection, escalation workflows, and UX design.
- Serve as the technical subject matter export for access management at Meta.
- Work with overall Access Management Lead, Information Security, and cross-functional partners to build, maintain, and execute on a roadmap considering short, medium, and long term access control and operational needs for tools.
- Understand technical implementation details for implementing access management and security controls.
- Oversee operations team responsible for performing access reviews on a periodic bases of the company assets.
- Perform and oversee periodic review of existing Security controls and safeguards.
- Ensure successful transition of project deliverables to support/maintenance/operations teams.
- Telecommuting is permitted from anywhere in the U.S.
- Requires a Master’s degree or foreign equivalent in Computer Science, Information Technology, Management Information Systems, or a related field and three years of experience in job offered or in a computer-related occupation. Requires three years of experience in involving:
- 1. Distilling complex technical information and conveying to different types of audiences to enable quick decisioning
- 2. Analytics and problem-solving across various security areas that run in large production environments
- 3. Building productive relationships with partners and leadership across an organization
- 4. NIST compliance framework and certifications.
Individual pay is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base salary, Meta offers benefits. Learn more about benefits at Meta.