28 days old

Senior Security Engineer

Seattle, WA 98104
  • Job Code
    200163523
Summary

Summary

Posted: Sep 1, 2020

Weekly Hours: 40

Role Number:200163523

Apple is seeking an extraordinary Senior Security Engineer with a focus on infrastructure security to lead the i...Summary

Summary

Posted: Sep 1, 2020

Weekly Hours: 40

Role Number:200163523

Apple is seeking an extraordinary Senior Security Engineer with a focus on infrastructure security to lead the innovative Internet Services Organization. This is a technical, hands-on role in a dynamic environment. You will need to have a good mixture of technical know-how as well as a background in higher level information security concepts, risk assessment methodologies, and integration of security practices into the development and systems architecture.

Key Qualifications

  • 3 plus years of proven experience in web application security, SSDLC, Threat Modeling#
  • Deep understanding of web application security threats, exploits, prevention
  • Ability to triage, reproduce, recommend remediations and implement fixes for vulnerabilities
  • Experience in penetration testing, vulnerability scanning, SAST and DAST. Familiar with tools and technologies used.
  • Passion for understanding and researching vulnerabilities and exploitation techniques
  • Knowledge of development and integration tools and technologies (e.g. CI/CD)
  • Knowledge of test automation frameworks and how they can be brought to bear for security QE
  • Proficiency in networking concepts (firewalls, load balancers, etc)
  • Practical knowledge of applied cryptography and common attacks against modern cryptographic algorithms (encryption at rest, TLS, hashing, etc)
  • Keeps up with industry trends in security technology and threats
  • Experience securing infrastructure in public cloud (e.g. AWS, Azure, Google Cloud)
  • Having a background in web application development and/or code auditing strongly preferred
  • Ability to work in a self directed environment that is highly collaborative and cross functional

Description

Conducting security assessments, architecture reviews, threat modeling of the application stack, including applications built on cloud and emerging technologies
Design and develop platform level solutions to promote security related initiatives and improvements.
Review source code for potential security issues, recommend and implement fixes.
Write security test cases to check for vulnerabilities or broken/missing security controls
Providing specific risk assessment and remediation guidelines for developers and business owners
Helping manage and triage findings from security tools and static and dynamic scanners
Conduct penetration testing against our applications, services, and environments; reporting underlying security issues and proposing appropriate security controls
Research the latest security standard methodologies, trends, threats and vulnerabilities, and technology frameworks
Document and disseminating security guidelines for common security issues, remediation guidance, and security baselines
Work with developers to provide security guidance and mentor them as necessary. Actively promote improving the security culture and education within the organization.

Education & Experience

Bachelors degree in Computer Science / Engineering with emphasis in security related fields (or equivalent experience)
Certs like OSCP, OSCE, OSEE, etc. beneficial but not necessary
Bonus points for community contributions like public CVEs, bug bounty recognition, open source tools, blogs, etc.

Additional Requirements

  • Apple is an Equal Opportunity Employer that is committed to inclusion and diversity. We also take affirmative action to offer employment and advancement opportunities to all applicants, including minorities, women, protected veterans, and individuals with disabilities. Apple will not discriminate or retaliate against applicants who inquire about, disclose, or discuss their compensation or that of other applicants.


Posted: 2020-08-31 Expires: 2020-09-30

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Senior Security Engineer

Apple, Inc.
Seattle, WA 98104

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast