Senior Staff Security Engineer - Red Team

Summary

Posted: Jan 24, 2025
Weekly Hours: 40
Role Number:200588254

We are the Apple Services Engineering (ASE) Security Red Team. We lead and execute complex Red Team engagements, simulating real-world attacker scenarios to uncover vulnerabilities across critical ASE services and infrastructure. We are growing our team and looking a Senior Staff Security Engineer to lead offensive security assessments that strengthen our defense capabilities. In this role, you will work closely with the security engineering, InfoSec, privacy, SRE, detection and design review teams to keep Apple's services secure for our users. You will identify security weaknesses, validate detection mechanisms, and provide actionable recommendations to enhance our security posture. You will collaborate with various architecture and engineering teams to continuously validate and improve our security controls and detection capabilities, with a strong focus on developing repeatable testing frameworks and metrics-driven security improvements. If you love diving into complex and important systems, and driving the security of that system over time, we want to talk to you!

Description

In this role, you will scope and lead focused security reviews on critical internet scale applications and supporting infrastructure. You will learn the services architecture and risk profile to build a scope that enables a meaningful security review. You will be: A technical expert responsible for the enumerating risks or exploit chains Capable of identifying scope of engagement, planning reviews, and executing those reviews to identify vulnerabilities and improvement opportunities. Able to identify areas that are ripe for improvement and establish appropriate security goals Adept at building relationships with engineering and leadership teams to drive security improvements Current on new security technologies, vulnerabilities, and methodologies An excellent verbal and written communicator Able to develop proof of concept systems to automate security recommendations, vulnerability discovery, and process workflows This position will involve some travel to other Apple sites.

Minimum Qualifications

• 8+ years in an information security field or software engineering; four or more of those years conducting security reviews
• Extensive infrastructure, cloud and application security experience
• Experience clearly communicating risk to engineering and leadership teams
• Ability to reason about security of a large and complex application or infrastructure
• Experience going deep on complex systems for extended engagements

Preferred Qualifications

• Bachelors degree in Computer Science / Engineering or a related, with emphasis in security related fields (or equivalent experience)
• Experience constructing narratives and building exploit chains
• Ability to reason about and influence software architecture for security
• Community contributions like public CVEs, bug bounty recognition, open source tools, blogs, talks etc.

Pay & Benefits

• At Apple, base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay range for this role is between $166,600 and $296,300, and your base pay will depend on your skills, qualifications, experience, and location.
  
  Apple employees also have the opportunity to become an Apple shareholder through participation in Apple’s discretionary employee stock programs. Apple employees are eligible for discretionary restricted stock unit awards, and can purchase Apple stock at a discount if voluntarily participating in Apple’s Employee Stock Purchase Plan. You’ll also receive benefits including: Comprehensive medical and dental coverage, retirement benefits, a range of discounted products and free services, and for formal education related to advancing your career at Apple, reimbursement for certain educational expenses — including tuition. Additionally, this role might be eligible for discretionary bonuses or commission payments as well as relocation. Learn more about Apple Benefits.
  
  Note: Apple benefit, compensation and employee stock programs are subject to eligibility requirements and other terms of the applicable plan or program.
  

• Apple is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. Learn more about your EEO rights as an applicant.