Imagine what you could do here. At Apple, new ideas have a way of becoming extraordinary products, services, and customer experiences very quickly. Bring passion and dedication to your job and there's no telling what you could accomplish. We’re a diverse collection of thinkers and doers, continually reimagining our products, systems, and practices to help people do what they love in new ways. This is a deeply collaborative place, where everything we create is the result of people in different roles and teams working together to make each other’s ideas stronger. That same passion for innovation that goes into our products also applies to our practices, strengthening our commitment to leave the world better than we found it.

Key Qualifications

• Experience in Information Security with a focus on incident response, threat hunting, or creating detection signatures.
• Real-world experience with data analysis, modeling, and correlation at scale.
• Good understanding of Apache Spark and SQL primitives.
• Prior experience in formal enterprise software development, including GitHub change management, unit testing, pair programming, and common design patterns.
• Knowledge of MITRE ATT&CK, threat modeling, and attack vectors.
• Knowledge of macOS and Linux internals.
• Understanding of malware functionality and persistence mechanisms.
• Ability to analyze endpoint, network, and application logs for anomalous events.
• Prior experience with incident response orchestration such as automated containment and triage is preferred.
• Knowledge of Scala or Java programming language is preferred.
• Demonstrated ability to work in a team environment.
• Excellent verbal and written communication skills.
• Highly motivated individual and a proactive learner.
• Thrive working in a fast-paced environment.
• Keen eye for automation opportunities.
• Passion for disrupting the attacker kill chain.

Description

Apple is seeking an exceptional engineer to join its global Detection & Response team. This is a hands-on technical role which involves the creation, testing, and tuning of Apple’s threat detection software. Additional responsibilities include:- Provide feedback and adhere to a use case development lifecycle.- Quantify the efficacy of Apple’s detection software with attack simulation and red team collaboration.- Formulate new detection ideas based on newly-published research, industry trends, or major incidents.- Drive the requirements for Apple’s security telemetry and response tools.- Automate the triage and response to security incidents.

Education & Experience

B.S. in Computer Science, Engineering, or equivalent degree.Technical certifications are a plus (OSCP, GIAC, CCNP/CCIE, and etc.)