Key Qualifications

• Extensive experience in Information Security with focus on Incident Response and/or Intrusion Detection
• Solid understanding of IP network traffic
• Solid understanding of Incident Response, Cyber Kill Chain, ATT&CK and Attack Vectors
• Ability to analyze malware and obfuscated code
• Proficiency in one or more programming/scripting languages (Python, Scala, C/C++).
• Experience with analysis of network traffic and usage of Deep Packet Inspection tools.
• Knowledge of web application vulnerabilities with ability to prioritise/verify OWASP Top 10 issues.
• Experience using big data log collection and correlation tools for data analytics
• Excellent problem solving skills combined with hands-on experience doing root cause analysis and post incident reviews
• In-depth technical knowledge of Mac OS X and/or Linux Operating Systems
• Ability to analyze endpoint, network, and application logs
• Experience with writing and tuning of IDS signatures
• Demonstrated ability to work in a team environment
• Highly motivated individual and a hardworking learner
• Experience with creation of comprehensive technical reports
• Excellent communications skills (verbal and written)
• Willing to work around a follow the sun model
• Threat intel and experience with disk and memory forensic tools (desirable not essential)

Description

You will work with a team of analysts on daily operational monitoring and escalation of information security events and also function as an intrusion analyst to examine security events for context, risk, and criticality. This person will have the opportunity to work on technology and processes with a global reach. This role is an integral part of the security controls that Apple uses to protect its customers, brand and data.

Education & Experience

B.S. in Computer Science, Engineering, or equivalent degreeTechnical certifications are a plus (OSCP, GIAC, CCNP/CCIE, and etc.)