Detection Engineer

Apple

| Seattle, Washington, United States (On Site) | Full Time | 3 months ago
Apply Now

Job Summary

The Detection team at Apple Services Engineering (ASE) is responsible for creating advanced detections to safeguard a significant portion of Apple's systems and services. They achieve this by collaborating with engineering teams to understand system operations and the threat landscape, enabling them to build state-of-the-art security detections that proactively defend against real-world attacks. The role involves driving the development of innovative detection technologies to uncover malicious activity within existing datasets and alert streams. This requires a deep understanding of attacker behavior and the technical skill to design and build systems that convert raw signals into high-fidelity, actionable alerts. The ideal candidate is technical, curious, eager to investigate threats, lead initial investigations, and collaborate with other teams to refine and scale detection capabilities, ultimately shaping Apple's security and impacting user safety and privacy.

Must Have

  • Deep understanding of attacker behavior
  • Technical ability to design and build systems
  • Transform raw signals into high-fidelity alerts
  • Curiosity and eagerness to chase threats
  • Lead initial investigations
  • Collaborate with other teams

Job Description

The Detection team within Apple Services Engineering (ASE) is responsible for building advanced detections that protect approximately three-quarters of Apple’s systems and services. We achieve this by partnering closely with engineering teams to develop a deep technical understanding of how these systems operate, along with a comprehensive grasp of the threat landscape. This allows us to build state-of-the-art security detections that proactively defend against real-world attacks. In this role, you’ll drive the development of innovative detection technologies that uncover malicious activity within our existing datasets and alert streams. You’ll need a deep understanding of attacker behavior, along with the technical ability to independently design and build systems that transform large volumes of raw signals into high-fidelity, actionable alerts. We’re looking for someone who’s not just technical, but curious. Someone who’s excited to chase down threats, lead initial investigations, and collaborate closely with other teams to refine and scale our detection capabilities. This role offers the opportunity to shape the future of Apple’s security and make a meaningful impact on the safety and privacy of billions of users worldwide. If you’re passionate about blending code, data, and security to stay one step ahead of attackers, we’d love to hear from you!