Summary
Posted: Mar 29, 2023
Role Number: 200469005
The Apple Media Products Engineering team is one of the most exciting examples of Apple's long-held passion for combining art and technology. These are the people who power the App Store, Apple TV, Apple Music, Apple Podcasts, and Apple Books. And they do it on a massive scale, meeting Apple's high expectations with high performance to deliver a huge variety of entertainment in over 35 languages to more than 150 countries. These engineers build secure, end-to-end solutions. They develop the custom software used to process all the creative work, the tools that providers use to deliver that media, all the server-side systems, and the APIs for many Apple services. Thanks to Apple's unique integration of hardware, software, and services, engineers here partner to get behind a single unified vision. That vision always includes a deep commitment to strengthening Apple's privacy policy, one of Apple's core values. Although services are a bigger part of Apple's business than ever before, these teams remain small, nimble, and cross-functional, offering greater exposure to the array of opportunities here. The AMP Platform Security team is looking for a Kubernetes Security Engineer to help us secure our complex and large-scale Kubernetes infrastructure.
- Deep, hands-on experience in Kubernetes, especially in a large-scale or complex environment
- Experience designing security solutions and implementing standard methodologies to harden Kubernetes in the cloud (e.g. GCP, AWS, etc)
- A "Cloud First" approach that is centered on design principles like infrastructure-as-code, immutable deployments, etc.
- Experience mapping generic corporate security/compliance requirements to a Kubernetes environment
- Experience partnering closely with business units/engineering teams to facilitate Kubernetes adoption in a secure manner
- Strong communication and documentation skills, especially when collaborating with audiences who may not have a security background
As a part of the AMP Platform Security team, the Kubernetes Cloud Security Engineer will be responsible for ensuring the Kubernetes infrastructure and service deployments within that infrastructure are well crafted and well implemented with respect to security. This requires collaborating with platform engineers and platform SRE to identify and prevent/remediate security issues at all stages of the Kubernetes deployment lifecycle. This includes performing architecture and design reviews for new Kubernetes technologies and developing security policies and requirements for teams looking to adopt Kubernetes. The Kubernetes Cloud Security Engineer will also collaborate extensively with internal and external stakeholders to ensure AMP business units are able to securely and efficiently embrace Kubernetes in a manner that is aligned with Apple policy. This is a phenomenal opportunity for someone with a strong cloud security/Kubernetes background who is interested in working directly in a business unit to reduce business risk and improve product security!
3+ years in a related Security Engineering role 3+ years experience managing enterprise infrastructure at scale, ideally in a production cloud or Kubernetes environment Experience with CNCF projects, anomaly detection tooling, or big data analysis is a plus
- At Apple, base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay range for this role is between $115,000 and $217,500, and your base pay will depend on your skills, qualifications, experience, and location.
Apple employees also have the opportunity to become an Apple shareholder through participation in Apple's discretionary employee stock programs. Apple employees are eligible for discretionary restricted stock unit awards, and can purchase Apple stock at a discount if voluntarily participating in Apple's Employee Stock Purchase Plan. You'll also receive benefits including: Comprehensive medical and dental coverage, retirement benefits, a range of discounted products and free services, and for formal education related to advancing your career at Apple, reimbursement for certain educational expenses - including tuition. Additionally, this role might be eligible for discretionary bonuses or commission payments as well as relocation. Learn more about Apple Benefits.
Note: Apple benefit, compensation and employee stock programs are subject to eligibility requirements and other terms of the applicable plan or program.
Education Requirements: 3+ years in a related
Security Engineering role 3+ years experience managing enterprise infrastructure at scale, ideally in a production cloud or Kubernetes environment Experience with CNCF projects, anomaly detection tooling, or big data analysis is a plus