WAF Engineer - Security Platforms

Santa Clara Valley (Cupertino), California, United States
Software and Services


Posted: Nov 5, 2018
Role Number: 114299840
Imagine a dynamic and exciting environment where teams of people are dedicated to pioneering innovative technologies that accelerate security for one of the most valuable companies in the world. Apple’s Security Solutions team is focused on building bleeding edge solutions and platforms to seek information security at Internet scale. The group is tasked with building full stack security solutions that secure Operating Systems, Hosts, Applications, & Network. The systems being protected are high-demand operating at hyper-scale and handling extraordinarily large volumes of critical data - some of the largest in the world. The security domains include but not limited to areas like Anomaly Detection, Intrusion Detection, Anti-phishing, Web Application Firewall, DDOS Prevention, Network Security, & Malware.

Key Qualifications

  • Experience configuring and tweaking ModSecurity / OWASP Rulesets for applications.
  • Experience with Load Balancing platforms like Apache, Nginx or Apache Traffic Server (ATS)
  • Exposure to Lua and other scripting languages
  • Knowledge of securing infrastructure with TLS, data encryption etc.
  • Dedicated and Self motivated
  • Good people skills.
  • Have good oral/written interpersonal skills.
  • Knowledge of Data Security, SSL, Certificates, etc.


We are looking for strong operations engineers with expertise in configuring, managing, monitoring and continuously improving security controls of Web Application Firewalls, Network security components, Traffic Encryption etc. that front and protect internet-scale highly critical applications.. You have deep experience in using OWASP/ModSecurity based rule systems. to configure and lead Web Application Firewalls.1 You have exposure to the security domain especially concepts related to Web Application Firewalls, OWASP, ModSecurity, Load Balancers, Forward Proxy Platforms and familiarity with Network layer security including deep packet inspection, DDOS charges, etc. This individual is also expected to be an excellent operations analyst who should be able to leverage monitoring systems to continuously look for and understand security attack patterns and tweak security rules to block them. The individual should also assist in building and improving models, scripts and rules to automatically stop such attack vectors. The individual will ensure that appropriate controls and alerts are put in place to detect anomalies, intrusion attempts, DDOS attacks etc. You'll work in a dynamic multi-functional environment involving partners, Project managers, and cross-discipline teams. Responsibility: •The primary responsibility will be WAF/OWASP rules design, coding and management •Security Analysis •Detecting, Analyzing and improving models and approaches to security threats. •Exploring new solutions, approaches and technologies

Education & Experience

Masters or Bachelor’s degree in Computer Science / Software Engineering with a minimum of 5 years of programming and operations experience.

Additional Requirements