Python Developer Jobs

Sr. Cyber Security Incident Response Analyst


  • security
  • python
  • c

Quick Facts

Shanghai, CN

Job description

Apple Information Security is responsible for protecting Apples data in transit and at rest. Apple employees and partners are always moving information from one system to another, or storing it on a server or device. Our job is to make sure Apple's information doesn't fall into the wrong hands.

We are building a world-class team of security practitioners in Shanghai. This is a rare opportunity to be involved in something new from the beginning. As a member of our team, you will have the opportunity to collaborate with multi-functional partners both internal and external to Apple. Among the groundbreaking services you will have the opportunity to focus on is iCloud in China.

We are looking for self-motivated individuals with an intuition for security who are not afraid to question assumptions. The ability to be results-driven, comfortable with dynamic requirements, and effective communicating cross-culturally are keys to success in this position.

Show us your talent in this challenging, fun, and exciting environment. Its what makes us Apple.

You will join a team of best in-class security monitoring and threat analysts working on technology and processes with global reach. This role is an integral part of the security controls that Apple uses to protect its customers, brand, and data. As a Senior Cybersecurity Incident Response Analyst, you will:

Perform daily operational monitoring;
Manage information security events escalated to the threat analyst team;
Function as an intrusion analyst to examine security events for context, risk, and criticality.

Successful candidates will exhibit some of the following characteristics:

Thorough understanding of incident response, cyber kill chain, threat modeling, and attack vectors.
Ability to analyze endpoint, network, and application logs.
Experience analyzing network traffic and using deep packet inspection tools.
Demonstrated ability to work in a team environment.
High level of motivation and enthusiasm for learning.
Technical knowledge of Mac OSX and Linux Operating Systems preferred.
Experience with disk and memory forensic tools preferred.
Experience with the writing and tuning of IDS signatures preferred.
Knowledge of CVEs and recent security vulnerabilities preferred.
Excellent problem solving skills combined with hands-on experience doing root cause analysis and post incident reviews preferred.
Ability to analyze malware and obfuscated code preferred.
Knowledge of web application vulnerabilities with ability to triage/verify OWASP Top 10 issues preferred.
Experience with creation of comprehensive technical reports preferred.
Apply now