Sr. Security Software Engineer, Ai and Data Platforms
Austin, Texas, United States
Summary
Posted: Apr 24, 2024Weekly Hours: 40
Role Number:200545192
At Apple, great ideas have a way of becoming extraordinary products, services, and customer experiences. Bring passion and dedication and there's no telling what you could accomplish. Are you passionate about empowering decision making through security? Do you want to work in a highly energized environment where your abilities will be challenged on a day-to-day basis? If so, AI & Data Platforms org is looking for people like you! You will be part of Apple’s security engineering team in a unique organization driving secure developer experience, generative AI, and data platforms. You will be joining a team of highly-skilled and passionate security engineers working on this groundbreaking and constantly evolving space. Our security engineering team champions shift-left security by providing innovative and GenAI-powered security capabilities to accelerate detection and remediation of security issues introduced in the software development process.
Key Qualifications
- 10+ years of experience in software engineering
- 5+ years in application security domain
- Hands-on technology experience in large enterprise environments is a must.
- Hands-on experience integrating security checks and tools into developer toolset, GitHub, and CI/CD
- Hands-on experience implementing and operating SAST and DAST tools
- Knowledge of OWASP and MITRE ATT&CK frameworks
- Experience doing code reviews to identify security vulnerabilities, developing secure coding practices and providing remediation guidance
- Experience with application threat modeling using industry standard frameworks
- Experience developing detailed solution architecture and components and leading development efforts with junior engineers and contractors
- Proficient in engineering of highly scalable, multi-threaded security solutions using Python, Java, or Go and RESTful or GraphQL APIs and be comfortable with Reactive programming
- Hands-on experience building and deploying applications on public cloud such as AWS or GCP, using infrastructure as code (IaC) as well as using container technologies such as Docker and Kubernetes
- Experience designing and implementing NoSQL databases
- Knowledge of CI/CD frameworks
- Experience leveraging and customizing open source projects
- Experience with test driven design and knowledge of 12 Factor application concepts
- Experience with application and service monitoring tools and techniques
- Proficient in writing detailed solution design specifications, sequence diagrams, test plans, workflows, etc.
- Excellent verbal communications skills and ability to work effectively with multi-functional technical and business teams
Description
This role is responsible for developing security capabilities, services, and tools leveraging both GenAI and traditional security techniques to proactively identify and remediate application security risks earlier in the software development lifecycle. This position requires deep expertise and hands-on experience with application security and software engineering at large enterprise scale using modern technology stacks running on wide range of production environments including Cloud. You will design and implement security solutions that provide timely detection of security issues while being performant and scalable. Understanding and solving for security challenges of developers will be a key focus for this role. You will improve developer experience through innovative solution implementations that accelerate security detection and remediation across the application stack. Given that security and GenAI domain is constantly evolving, you will research, learn and apply new technologies, techniques and methods to improve effectiveness of our security services. You will have a proven track record of technical leadership, innovation, responsibility, and creative thinking. You will work closely with other senior engineers on the team and independently lead a project or own significant components of a large project. You will collaborate with a diverse set of engineering teams across Apple to understand their challenges, design appropriate recommendations, and enable security solutions that both improve developer productivity and mitigate security risk for Apple. You will build sustainable relationships with our partner engineering teams to integrate our solutions into the developer platforms.
Education & Experience
Bachelors or Masters of Science or equivalent experience in Computer Science, or Cybersecurity.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security AWS CI/CD Cloud Computer Science DAST Docker GCP Generative AI GitHub Java Kubernetes MITRE ATT&CK Monitoring NoSQL Open Source OWASP Python SAST SDLC Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs