Information Security Incident Response Engineer

Apple is seeking a security professional to join its Information Security Response Organization, as part of the Threat Analysis and Incident Response function. A successful candidate will possess a proven technical background, relevant Information Security experience with a strong focus in the Incident Response lifecycle. You will work with a global team of security professionals on a follow-the-sun model with a primary focus on the identification, containment, and mitigation of security incidents. This role is an integral part of the security controls Apple uses to protect its customers, brand, and data. This person will have the opportunity to work on technology and processes with global reach. Apple is an Equal Opportunity Employer that is committed to inclusion and diversity. We also take affirmative action to offer employment and advancement opportunities to all applicants, including minorities, women, protected veterans, and individuals with disabilities. Apple will not discriminate or retaliate against applicants who inquire about, disclose, or discuss their compensation or that of other applicants. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Minimum Qualifications

• More than 7 years of experience in Information Security with a focus on Incident Response, Security Engineering, and/or Intrusion Detection
• Proficient understanding of incident response automation strategies, with demonstrated ability to implement them
• Proficient understanding of threat modeling, operational threat intelligence, and common attack vectors
• Knowledge of web application vulnerabilities with ability to triage/verify OWASP Top 10 issues
• In-depth technical knowledge of macOS or Linux Operating Systems
• Exceptional analytical and investigative skills with hands-on experience, with demonstrated ability to analyze endpoint, network and application logs
• Proficient in one or more programming/scripting languages
• Excellent verbal and written communication skills

Preferred Qualifications

• Experience with disk and memory forensic tools
• Experience writing and tuning IDS signatures
• Experience triaging malware