Sr. Cyber Security Incident Response Analyst

Shanghai, Shanghai, China
Software and Services


Weekly Hours: 40
Role Number:200150797
Imagine what you could do here. At Apple, new ideas have a way of becoming extraordinary products, services, and customer experiences very quickly. Bring passion and dedication to your job and there's no telling what you could accomplish. We’re a diverse collection of thinkers and doers, continually reimagining our products, systems, and practices to help people do what they love in new ways. This is a deeply collaborative place, where everything we create is the result of people in different roles and teams working together to make each other’s ideas stronger. That same passion for innovation that goes into our products also applies to our practices, strengthening our commitment to leave the world better than we found it.

Key Qualifications

  • You demonstrate experience in Information Security with focus on Incident Response, Security Engineering, and/or Intrusion Detection.
  • You have experience working in Security Operations Center and/or Computer Incident Response Team.
  • You have a solid knowledge of computer networks and common protocols: TCP/IP, UDP, DNS, FTP, SSH, SSL/TLS, HTTP, and etc.
  • You will have experience with analysis of network traffic and usage of Deep Packet Inspection tools.
  • You have a proficiency in one or more programming/scripting languages (Python, Go, C/C++).
  • You have an In-depth technical knowledge of Mac OS X and Linux Operating Systems.
  • You have experience with disk and memory forensic tools.
  • You have the ability to analyze endpoint, network, and application logs.
  • Experience with writing and tuning of IDS signatures.
  • Demonstrated an understanding of Incident Response, Cyber Kill Chain, Threat Modeling, and Attack Vectors.
  • Knowledge of CVEs and recent security vulnerabilities.
  • Excellent problem solving skills combined with hands-on experience doing root cause analysis and post incident reviews.
  • Experience using big data log collection and correlation tools for data analytics.
  • Ability to analyze malware and obfuscated code.
  • Knowledge of web application vulnerabilities with ability to triage/verify OWASP Top 10 issues.
  • Excellent verbal and written communication skills.
  • Demonstrated ability to work in a team environment.
  • Highly motivated individual and an enthusiastic learner.
  • Experience with creation of comprehensive technical reports.


Apple is seeking a Senior Cyber Security Analyst to join its best-in-class security monitoring and threat analysis team. The Senior Cyber Security Analyst will possess a proven technical background and information security experience and will focus on detection and response. You will work with a team of analysts on daily operational monitoring and escalation of information security events and also function as an intrusion analyst to examine security events for context, risk, and criticality. This person will have the opportunity to work on technology and processes with a global reach. This role is an integral part of the security controls that Apple uses to protect its customers, brand and data.

Education & Experience

- B.S. in Computer Science, Engineering, or equivalent degree. - Technical certifications are a plus (OSCP, GIAC, CCNP/CCIE, and etc.)

Additional Requirements

  • Apple is an Equal Opportunity Employer that is committed to inclusion and diversity. We also take affirmative action to offer employment and advancement opportunities to all applicants, including minorities, women, protected veterans, and individuals with disabilities. Apple will not discriminate or retaliate against applicants who inquire about, disclose, or discuss their compensation or that of other applicants.