Ibrahim Mosaad

Security engineer at Facebook

Startup Security Products and Solutions

Session Title | Move fast and secure things: Facebook's approach into securing its code base.

Explaining the different layers of application security at Facebook And how it is possible for companies (small to large) to integrate security into their development cycle.

Watch Video

  • I am a security engineer working in the product security team at Facebook. Our responsibility is to enable software engineers to move fast and securely. We try to make it very easy for software engineers to write secure code and difficult to introduce any security bugs. We are responsible for the security of Facebook products which spans across Facebook, Instagram, WhatsApp, Messenger, and Oculus.
  • I have been interested in security since I was 13 years old. My journey started when I did not know what the word "hacking" means. Looking up for the definition was my entry point to security. Since then, I started to read more about security and dived into the field. I decided to study computer engineering and followed it up with MSc in information security.
  • Before Facebook, I used to work as a penetration tester/security consultant. As a penetration tester, I tried to find security issues from a black-box perspective. In the product security team, we almost do the same but from a white-box perspective. My main focus at Facebook is to improve our static analysis efforts to automatically detect most of the security issues.