Apple Services Engineering (ASE) team is one of the most exciting examples of Apple’s long-held passion for combining art and technology! We enable Apple’s apps and services, and we do it on an extensive scale, to hundreds of millions of customers in over 35 languages to more than 150 countries. The ASE Security team is seeking an experienced Security Engineering Program Manager to drive internal security engineering functions such as offensive / adversarial security exercises, collaborative design reviews and education, as well as automation and detection.
Within ASE you will work with and influence colleagues across Apple to implement new features and ensure security continues to be at the forefront of our software and development processes. You will join a team of technical engineering-focused program managers committed to and passionate about driving forward our security, privacy and compliance technologies. As our work is integral through the entire software stack, you will have the opportunity to work with a wide variety of engineering teams across Apple. We cultivate strong relationships, build trust, and influence without direct authority. We communicate openly and clearly, collaborate enthusiastically, and value a diverse culture of healthy debate.
Do these points resonate with you? If so, we want to talk!
As a Security Engineering Program Manager in ASE, you are both a technical and functional expert in the world of securing enterprise servers and services at scale. This team will work directly with an engineering team to deliver security improvements and creative mitigations and remediation strategies across Apple to exceed our high expectations. This is not a task-based job; we are accountable for delivering secure and performant systems. Partnering with program and engineering leaders and teams, you will influence and drive every aspect of software and hardware development and deployment including definition, design, integration, build, qualification, and release processes; identify release blockers and run the implementation and deployment of remediations to development, QA, and production environments both on premise and in public cloud infrastructure globally. You can expect to partner with engineering and other multi-functional teams to identify opportunities to secure our services and machines, to gather input, then deploy and improve those security controls. You will also work closely with other engineering teams to make security-improving changes to their tools, processes, and workflows.
Engineer or Technical Program Management professional or volunteer experience in at least one of the following areas: security review, adversarial and/or collaborative testing, detection and response, incident and/or vulnerability management, education, outreach, or automation of testing, tooling, or remediations.