Security Infrastructure Engineer at Apple Inc. (Cupertino, CA)

The Crypto Services team at Apple is responsible for protecting the cryptographic keys used to secure Apples highly sensitive information and devices. The ideal candidate has strong experience with securing infrastructure devices, risk assessment methodology, and security engineering practices and tooling. The candidate must be able to plan, coordinate, and implement practical security solutions to mitigate vulnerabilities.

Key Qualifications:
System security using packet filtering, logging, and intrusion detection systems
Demonstrated understanding of network principles (such as network topologies, network addressing schemes, subnets, firewalls, load balancers, and security segregation)
Experience with SIEM platforms (e.g. QRadar), vulnerability scanners (e.g. Nessus, Qualys), and monitoring tools (Splunk, Graphite)
Experience designing, maintaining, and monitoring logical security controls at the network, OS/DB and application layer for an enterprise system
Experience with one or more general purpose development languages such as Python, Java, bash or perl
Proficient in performing infrastructure and application security reviews and penetration tests and remediating the findings
Experience with SOX and Payment Card Industry (PCI) Data Security Standards (PCI DSS) and WebTrust is a plus
Proven ability and commitment to work both independently and collaboratively with numerous people at all levels throughout the company
Excellent collaborative skills, with strong written and verbal communication
Excellent critical thinking and problem solving skills

Description:
The candidate will lead the in-depth security reviews of the architecture, design, implementation and maintenance of Apples cryptographic infrastructure. This includes architecting secure infrastructure, liaising with Information Security, and coordinating incident response and penetration testing. To succeed on this team, the candidate must be self-motivated and comfortable with changing priorities in a dynamic environment.

Education:
BS/MS CS/EE or equivalent experience preferred

Additional Requirements:
Solid grasp of PKI and SSL/TLS a plus
Experience with applied cryptography a plus
Experience with Hardware Security Modules (HSM) a plus
Experience with continuous deployment that leverages containerization technologies (Docker, Kubernetes) a plus

Apple is an Equal Employment Opportunity Employer that is committed to inclusion and diversity. We also take affirmative action to offer employment and advancement opportunities to all applicants, including minorities, women, protected veterans, and individuals with disabilities.

by via developer jobs - Stack Overflow