Senior Software Engineer, Security Enablement Team ASE

In this role you will be working on problems of Foundational Security Architecture, Data Protection, Compliance and Governance and many more problems intersecting scale and security.

Security is paramount to Apple's commitment to user trust and privacy. The Security Enablement Team plays a critical role in this by developing and delivering the foundational software and services that secure Apple's most vital systems. As a Software Engineer on this team, you will be at the forefront of building robust, scalable, and secure solutions that underpin services like iCloud, Apple Music, News, Satellite SoS, and FindMy. This is a hands-on software engineering role where your primary focus will be on designing, coding, and deploying high-performance systems with security built-in from the ground up. You will work with a diverse set of technologies, including large-scale distributed data services (Cassandra, Kafka, Valkey, Zookeeper, etcd, Solr) and cloud-native platforms (Kubernetes, Docker). We are looking for a strong software engineer who possesses a deep passion for security and is eager to solve complex problems at the intersection of scale and security, contributing directly to the integrity and resilience of Apple's global infrastructure.

Qualifications

• 8+ years of experience in software engineering and building large scale distributed systems.
• Experience with Kubernetes, Docker, and containerization (CNCF Kubernetes Developer or equivalent)
• Experience with languages such as Java, Go, Python.
• Knowledge of securing APIs, including input validation, authentication, and authorization mechanisms for RESTful and gRPC APIs
• Good understanding of operating systems concepts including multi-threading, memory management, networking and storage, performance and scale.
• Hands-on experience with Systems, including the ability to configure and troubleshoot system initialization processes.
• Understanding of network security principles, protocols, and technologies, including firewalls, VPNs, and secure communication channels.
• Familiarity with incident response processes and the ability to respond to security incidents effectively.
• Knowledge of cryptographic algorithms and protocols for securing data, including TLS/SSL, digital signatures, hashing, and encryption.
• Knowledge of authentication and authorization mechanisms, including OAuth, JWT, and other identity management protocols.
• Experience developing software in open source communities a plus.