Threat Intelligence Analyst, SEAR

Washington DC, District of Columbia, United StatesApple’s Security Engineering & Architecture (SEAR) provides operating system security foundations across all of Apple’s innovative products, including Mac, iPhone, iPad, Apple Watch, and Apple TV. As part of our efforts to protect our users, Apple is looking for a world-class threat intelligence analyst to join a team of security researchers and analysts who work together and cross-functionally to inform efforts to solve security engineering challenges. The success we are striving for is the result of very skilled people working in an environment that cultivates creativity, partnership, and solving old problems in new ways. We are looking for a threat intelligence analyst who is passionate about securing the desktop computing environment, loves macOS, and is committed to driving security investigations and improvements in macOS. At Apple, our mission involves securing and protecting over a billion endpoints; operationalizing threat intelligence into security engineering decisions affecting every layer of the stack; and touching the lives of everyone who interacts with our products.DescriptionYou will have a broad set of skills that make you successful as threats continue to evolve, and you will be capable of analyzing cyber threats to our users’ devices. Our environment fosters innovation, rapid solution development, and grants a wide range of autonomy–within which you will be expected to work with security engineers and researchers in order to quickly bring to market new security methods and technologies addressing the complex needs of Apple users.Analyze and understand advanced cyber actors, capabilities, and techniques.Ability to write scripts to expedite common threat intelligence tasks.Proficiency in Python, SQL, and/or other commonly utilized data analysis languages.Ability to utilize the Diamond Model of Intrusion Analysis, MITRE Pre/ATT&CK frameworks for threat intelligence and research.Collaborate with security researchers to contextualize cyber threat intelligence for decision makers and work cooperatively to drive solutions.Provide input into the development of security technologies.Work with security engineers in designing innovative mitigations to cyber threats while preserving privacy, ease-of-use, and user experience.Remote work, with very occasional travel.Minimum QualificationsIntellectually curious team player with a genuine passion for finding, understanding, and mitigating cyber threats against macOS.In-depth understanding of the threat intelligence cycle and cyber operations.Minimum of 4 years experience in threat intelligence or security research.Experience in analyzing highly-complex threat actor campaigns, including infrastructure, malware, and victim endpoints.Ability to distill complex problems into manageable tasks and then drive those tasks to completion.Demonstrable experience investigating macOS threat activity.Growth mindset, thrives in fast-paced, changing environment.Excellent verbal and written communications skills.Proven history of successfully working on solo and group projects in a virtual/remote environment.Bachelors Degree or Masters in related field or equivalent years of industry related experience.

#J-18808-Ljbffr