WAF Engineering Manager - Security Platforms

Santa Clara Valley (Cupertino), California, United States
Software and Services


Posted: Nov 5, 2018
Role Number: 114058560
Imagine a dynamic and exciting environment where teams of people are dedicated to pioneering innovative technologies that accelerate security for one of the most valuable companies in the world. Apple’s Security Solutions group is a critical group focused on building state-of-the-art solutions and platforms to pursue information security at Internet scale. The group is tasked with building full stack security solutions that secure Operating Systems, Hosts, Applications, & Network. The systems being protected are high-demand operating at hyper-scale and handling extraordinarily large volumes of critical data - some of the largest in the world. The security domains include but not limited to areas like Anomaly Detection, Intrusion Detection, Anti-phishing, Web Application Firewall, DDOS Prevention, Network Security, & Malware.

Key Qualifications

  • Experience configuring and tweaking ModSecurity / OWASP Rulesets for applications.
  • Experience with Load Balancing platforms like Apache, Nginx or Apache Traffic Server (ATS)
  • Exposure to Lua and other scripting languages
  • Knowledge of securing infrastructure with TLS, data encryption etc.
  • Knowledge of Data Security, SSL, Certificates, etc.
  • Pro-active and Self motivated
  • Good people skills.
  • Must have good oral/written interpersonal skills.


We are looking for strong hands on manager to lead a team of operations engineers with expertise in configuring, managing, monitoring and continuously improving security controls of Web Application Firewalls, Network security components, Traffic Encryption etc. that front and protect internet-scale highly critical applications. The manager will be hands on experience in using OWASP/ModSecurity based rule systems to configure and lead Web Application Firewalls. You will lead the team to continuously look for and understand security attack patterns and tweak security rules to block them, The individual should also assist in creating and improving models, scripts and rules to automatically stop such attack vectors. The individual will ensure that appropriate controls and alerts are put in place to detect anomalies, intrusion attempts, DDOS attacks etc. You've had meaningful experience in the area of security domain, especially in concepts related to Network and Application security, Web Application Firewalls, Load Balancers, Forward Proxy Platforms and familiarity with Network layer security including deep packet inspection, DDOS attacks, etc. You will work in a dynamic cross functional environment involving stakeholders, Project managers, and cross-discipline teams. The individual will also need to directly or indirectly influence the security monitoring tools, processes to achieve the security, uptime and reliability goals. Responsibility: •Team management, mentoring & performance reviews •WAF/OWASP rules design, coding and management •Security Analysis •Detecting, Analyzing and improving models and approaches to security threats. •Exploring new solutions, approaches and technologies

Education & Experience

Masters or Bachelor’s degree in Computer Science / Software Engineering with a minimum of 8+ years of engineering, operations and management experience.

Additional Requirements