Job Details

Weekly Hours: 40

Role Number: 200633237-3337

Summary

We are the Workload Identity team in the Apple Services Engineering Security org. Our team’s primary responsibility is to manage and establish identities for software applications, services, and containers to securely access cloud resources, ensuring proper authentication and authorization for these workloads without requiring manual credential management.

We are expanding our team and looking to add a Senior Software Engineer who will play a critical role in ensuring our customers adhere to the latest and most effective security practices for addressing identity. We are looking for a passionate and talented technical lead engineer who will focus on creating fundamental security services, addressing identity challenges on a large scale within the ASE organization. Success in this role requires individuals to possess a blend of profound technical expertise, extensive knowledge in security, and substantial experience in large-scale operations.

Description

Your duties in this role will include defining, advocating, and driving the adoption of a standardized set of minimum security requirements while monitoring progress. You will have direct influence on the future of our security protocols, guiding engineering teams as they incorporate secure practices and tools into their development processes.

Minimum Qualifications

• 7+ years of software development or production operations experience in a large-scale environment

• Strong programming skills in Golang, as you’ll be working extensively with Go-based applications

• Proven experience building and operating large scale, highly available, distributed, and fault tolerant systems

• Excellent understanding of operating systems concepts including multi-threading, memory management, networking and storage, performance and scale

• Experience with Kubernetes, Docker, and containerization (CNCF Kubernetes Developer or equivalent)

• Knowledge of securing APIs, including input validation, authentication, and authorization mechanisms for RESTful and gRPC APIs

• BS/MS in Computer Science or equivalent experience

Preferred Qualifications

• Hands-on experience with Systems, including the ability to configure and troubleshoot system initialization processes

• Understanding of network security principles, protocols, and technologies, including firewalls, VPNs, and secure communication channels

• Familiarity with incident response processes and the ability to respond to security incidents effectively

• Knowledge of cryptographic algorithms and protocols for securing data, including TLS/SSL, digital signatures, hashing, and encryption

• Knowledge of authentication and authorization mechanisms, including OAuth, JWT, and other identity management protocols

Apple is an equal opportunity employer that is committed to inclusion and diversity. We seek to promote equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. Learn more about your EEO rights as an applicant (https://www.eeoc.gov/sites/default/files/2023-06/22-088_EEOC_KnowYourRights6.12ScreenRdr.pdf) .