Detection and Response Software Engineer

Detection and Response Software EngineerSeattle, Washington, United States Software and Services< Apple Services Engineering (ASE) Detection team is responsible for building advanced detections that protect approximately three-quarters of Apple’s systems and services. As our detection program scales, we need sophisticated engineering solutions that enable more effective detection creation, investigation, and response. Join Apple, and help us build world-class detection and response platforms that protect billions of users.We’re looking for a Detection and Response Software Engineer who is passionate about building tools and platforms that multiply the effectiveness of security teams. In this role, you’ll design and implement engineering solutions that automate investigation workflows, enrich alerts with contextual data, enable rapid incident response, and leverage cutting-edge technologies including GenAI to transform how we approach detection and response.This is a software engineering role with a security mission. You’ll need strong development fundamentals, experience shipping production-quality code, and the ability to work at the bleeding edge of technology. We’re looking for engineers who embrace GenAI-assisted development while maintaining rigorous engineering standards and best practices.If you’re excited about building platforms that empower security teams and want to shape the future of detection engineering at scale, we’d love to hear from you!DescriptionAs a Detection and Response Software Engineer on the ASE Detection Team, you will:Design and build engineering platforms that enable efficient detection creation, alert enrichment, automated investigation, and incident response workflowsDevelop automation solutions that transform raw security signals into high-fidelity, actionable alerts through correlation, enrichment, and intelligent processingBuild integrations with collaboration platforms (Slack, Teams), ticketing systems, and security tools to enable seamless “SlackOps” and automated response workflowsLeverage GenAI technologies to create next-generation detection and investigation tools, applying modern AI‑assisted development techniques while ensuring reliability and securityEstablish engineering requirements for detection-as-code frameworks, testing methodologies, and deployment pipelinesCollaborate with detection engineers to understand operational pain points and translate requirements into scalable technical solutionsMinimum Qualifications5+ years of professional software development experience with demonstrated ability to ship production-quality codeStrong proficiency in Python with experience building production services, APIs, or data processing pipelinesBachelor’s degree in Computer Science, Software Engineering, or related technical field, or equivalent professional experienceExperience with software engineering fundamentals: version control (Git), testing frameworks, CI/CD pipelines, code review practicesDemonstrable coding skills through one or more of: active GitHub profile with personal projects, contributions to open-source projects, technical blog, or portfolio of shipped softwarePreferred QualificationsProficiency in Swift, particularly for building macOS/iOS tools or applicationsExperience applying GenAI/LLM technologies to software development, including prompt engineering, code generation workflows, and AI‑assisted development best practicesHands‑on experience with large-scale data processing frameworks (Apache Spark, Databricks, pandas) or distributed systemsExperience building Slack bots, integrations, or custom ChatOps workflowsFamiliarity with Kubernetes, container orchestration, and cloud‑native application developmentExperience with web services, RESTful API design, and database systemsKnowledge of security concepts: threat modeling, detection engineering, incident response, or security operationsExperience building developer tools, internal platforms, or infrastructure‑as‑code solutionsActive participation in technical communities: conference talks, blog posts, open‑source maintainer, or published technical writingTrack record of rapidly prototyping solutions and iterating based on user feedbackUnderstanding of the challenges of building detection systems at scale (signal‑to‑noise ratios, false positive management, alert fatigue)At Apple, base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay range for this role is between $171,600 and $302,200, and your base pay will depend on your skills, qualifications, experience, and location.Apple employees also have the opportunity to become an Apple shareholder through participation in Apple’s discretionary employee stock programs. Apple employees are eligible for discretionary restricted stock unit awards, and can purchase Apple stock at a discount if voluntarily participating in Apple’s Employee Stock Purchase Plan. You’ll also receive benefits including: Comprehensive medical and dental coverage, retirement benefits, a range of discounted products and free services, and for formal education related to advancing your career at Apple, reimbursement for certain educational expenses — including tuition. Additionally, this role might be eligible for discretionary bonuses or commission payments as well as relocation. Learn more about Apple Benefits.Note: Apple benefit, compensation and employee stock programs are subject to eligibility requirements and other terms of the applicable plan or program.Apple is an equal opportunity employer that is committed to inclusion and diversity. We seek to promote equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. Learn more about your EEO rights as an applicant.Apple accepts applications to this posting on an ongoing basis. #J-18808-Ljbffr