Senior Security Architect

Austin, Texas, United States
Software and Services

Summary

Posted: Aug 29, 2018
Weekly Hours: 40
Role Number: 114063908
We live in a mobile and device driven world where knowledge of the physical world around us is needed. We rely on this knowledge to get around, to learn about our environment and to enable spectacular new features for custom applications. Apple is meeting those needs as robustly and as creatively as possible and is interested in people who want to help meet that commitment. The success we are striving will be the result of very skilled people working in an environment which cultivates creativity, partnership, and thinking of old problems in new ways. If this sounds like the kind of environment that you find intriguing, then let's talk. Imagine what you could do here. At Apple, new ideas have a way of becoming great products, services, and customer experiences very quickly. Bring passion and dedication to your job and there's no telling what you could accomplish. Security is at the heart of Apple and ingrained in everything we do. We are looking for a like minded leader to join the Global Infrastructure Strategy Team to build secure and scalable solutions for our massive infrastructure. We are looking for your expertise in security to help us protect our customers and product IP while enabling a first class experience. It’s a delicate balance that requires judgement, collaboration and security know how to develop a vision, roadmap, and framework to ensure security is a thread woven throughout our infrastructure.

Key Qualifications

  • Minimum of 5 to 7 years in the engineering and architecture in information security
  • CCIE, CISM, CCISSP, GSEC, SSCP, GIAC, CEH CWSP or other Security Certifications a plus
  • Expert Knowledge and Experience in VPN Technologies and Deployments - IPSec, 3DES, AES, IKE, DMVPN, AnyConnect, Full Tunnel/Split Tunnel Client VPN Solutions, Site to Site VPN Solutions
  • Knowledge and experience in AAA appliances - Cisco ISE, ACS, Juniper UAC, Open RADIUS, NAC, AAA, Single Sign On, RBAC/RBNA
  • Experience and Knowledge of Identity and Access Management, X.509 Certs, PKI, CA Authorities, Cert Provisioning (SCEP) and Cert Revocation Services (CRL,OCSP), Kerberos, Key Management
  • Experience in Technologies: Java/J2EE, JSP/ Servlets, LDAP, JDBC, SAML, oAuth, OpenID, Shell, PHP, ASP, XML, HTML, CSS, JavaScript, JAX-RS CXF
  • Knowledge of Routing protocols EIGRP, OSPF, BGP, MP-BGP, VRF, Multicast, AnyCast, MPLS, DSCP/QoS
  • Knowledge and Experience in Securing Public and Private Cloud Environments (AWS, Azure a plus)
  • Knowledge of Wireless standards and protocols - WPA/WPA2, 802.1x, 802.11a/b/g/n/ac/r/k, CAPWAP, RMM, WMM, X.509, MDM, Captive Portal, Guest Access, Posturing, Profiling, DACLs, PACLs
  • LDAP, non-SQL DB, Cassandra
  • DNS/DHCP services a plus
  • Python, Go, Perl Scripting experiences a plus
  • Container and KVM experience a plus

Description

Apple prides itself in making complex environments simple to our end users. We are looking for creative people that are motivated in providing solutions that simplify and enhance . This is an opportunity to shape and define security solutions that are intuitive and transparent to Apple’s Community. As a Senior Security Architect you will be responsible for defining security solutions for Apple’s global infrastructure. You will work across Apple’s Properties and work with partners to define requirements and propose security solutions that protect Apple’s internal assets. The initial focus of this role is to define security reference architectures and provide roadmaps for key properties such as Data Center, WAN and Cloud Environments. The position will require thought leadership across the organization to communicate and evangelize proposed security solutions and drive initiatives to ensure security is integrated in the services we provide the Apple Community and our Customers. If you are a person that likes solving challenges and making things simple and secure than we would like to meet you. SKILLS: - Demonstrate strong communication skills to align multi-functional teams and objectives and promote joint outcomes - Apply group problem solving and design making techniques to develop understanding and agreement among people to achieve shared outcomes - Work with internal clients and partners to understand business needs, offer advice and solutions and operating from a position of expertise consistent with a collaborative approach - Able to balance requirements from business, operations and industry trends to facilitate solutions that deliver ongoing capabilities - Requires attention to detail, ability to meet multiple deadlines and adapt to changing priorities - Requires excellent analytical, problem solving, organizational and time management skills - Ability to make timely and effective decisions that are based on sound judgment and business rationale - Strong leadership, project and team-building skills, including the ability to lead teams and drive projects and initiatives in multiple departments RESPONSIBILITIES: - Work with technology partners to architect security elements that align with business needs and infrastructure strategies - Evaluate DC, WAN and ExtraNet designs and create a security architecture and framework to protect Apples IP - Work with Systems Engineers to harden System OS (MACOS/Linux/Windows) and Hardware Platforms - Evaluate and define Security Control framework for Apples Global Properties - Work with Compliance and Audit teams to build a robust, scalable and secure environment for PCI and SOX - Create solutions that balance business requirements with information and security requirements - Work with Systems architects to create solutions to identify and profile devices and applications on Apple’s Network - Evaluate and define security boundaries to protect Apple's internal Assets - Create solutions for Visibility and Telemetry for every connected device on the infrastructure - Define and Maintain security solutions roadmap and present on a regular basis strategic vision for proposed future security technologies and improvements aligned to corporate and information security strategy - Develop design principles, roadmaps, models, plans, internal standards, budgets, and processes based on industry standard methodologies - Be a strong leader with a point of view for the organization and clearly communicate to influence support of your ideas - Design, build and implement enterprise-class security systems for a production environment - Align standards, frameworks and security with overall business and technology strategy - Identify and communicate current and emerging security threats - Design security architecture elements to mitigate threats as they emerge - Create solutions that balance business requirements with information and cyber security requirements - Dedicatedly advise management on ongoing needs and issues related to security infrastructure; communicate industry trends, standard methodologies and opportunity for technology and process optimization

Education & Experience

- BS degree in computer science or information management with 10+ years or MS degree with 5+ years experience, or equivalent work experience.

Additional Requirements