Job Detail

Job Description

Apple Media Products - Security Engineer - Standards, Guidance, Documentation

Santa Clara Valley (Cupertino),California,United States

Software and Services

• • Experience driving policy and compliance alignment in an engineering organization.
• • Ability to develop, document, and maintain clear information security expectations by coalescing security requirements from various disparate sources (e.g. internal policy, external compliance requirements, business risk tolerance).
• • Familiarity with common security frameworks and standards that bring together industry best practices.
• • Excellent documentation and interpersonal skills.
• • Ability to work with a diverse set of teams and drive towards consensus on security requirements.
• • Develop security metrics of adherence to standards in a way that can provide visibility to management on the current state of security.
• • Ability to evaluate and reason about business risk in a meaningful way.

Description

This Platform Security Engineer role will be responsible for establishing, maintaining, and communicating impactful security expectations! These expectations should take the form of information security standards and guidelines that address mandatory security requirements (i.e. Apple policy, compliance obligations) and also incorporate common standard methodologies pulled from a variety of industry sources (e.g. NIST CSF, ISO 27001/27002, OWASP SAMM, etc.), with the goal of giving AMP teams a single set of impactful requirements to drive their work. In addition to the development of security standards, this individual should drive guidance and documentation meant to address common security questions and issues to further enable AMP teams to work securely in a self-service manner. The ideal candidate will have a strong background mapping generic (and sometimes vague) security and compliance obligations to meaningful requirements via clear documentation. Achieving consensus on the requirements will require extensive interaction with the external partners (e.g. Apple Information Security, Apple Privacy/Legal) and internal partners (AMP Security, AMP SRE, AMP engineering) to validate that the requirements meet the relevant security requirements and are impactful/understandable by AMP teams. As appropriate and required, this person should also help formalize security governance processes that ratify and get agreement from AMP management to treat these standards as binding expectations for AMP teams. This role will also be expected to drive general security and privacy improvements on security projects, as needed!

Education & Experience

At least 5 years in a security engineering or security related role Experience managing security policy or standards in an enterprise environment Familiarity with SDLC and the security expectations in an enterprise software engineering environment

Additional Requirements

Apple Footer

Apple is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. Learn more about your EEO rights as an applicant at https://www.eeoc.gov/sites/default/files/migratedfiles/employers/eeocselfprintposter.pdf (Opens in a new window) at https://www.eeoc.gov/sites/default/files/migratedfiles/employers/eeocselfprintposter.pdf .

Apple will not discriminate or retaliate against applicants who inquire about, disclose, or discuss their compensation or that of other applicants. United States Department of Labor. at https://www.dol.gov/agencies/ofccp/executive-order-11246 Learn more at https://www.dol.gov/agencies/ofccp/executive-order-11246 (Opens in a new window) at https://www.dol.gov/agencies/ofccp/executive-order-11246 .

Apple will consider for employment all qualified applicants with criminal histories in a manner consistent with applicable law. If you’re applying for a position in San Francisco, review the San Francisco Fair Chance Ordinance at https://sfgov.org/olse/sites/default/files/Document/FCO%20Poster%20Set%20All%20Languages%2010%2001%2018.pdf guidelines at https://sfgov.org/olse/sites/default/files/Document/FCO%20Poster%20Set%20All%20Languages%2010%2001%2018.pdf (opens in a new window) at https://sfgov.org/olse/sites/default/files/Document/FCO%20Poster%20Set%20All%20Languages%2010%2001%2018.pdf applicable in your area.

Apple participates in the E-Verify program in certain locations as required by law. Learn more about the E-Verify program at https://www.apple.com/jobs/pdf/EverifyPosterEnglish.pdf (Opens in a new window) at https://www.apple.com/jobs/pdf/EverifyPosterEnglish.pdf .

Apple is committed to working with and providing reasonable accommodation to applicants with physical and mental disabilities. Apple is a drug-free workplace. Reasonable Accommodation and Drug Free Workplace policy at https://www.apple.com/jobs/us/accommodationdrugfree.html Learn more at https://www.apple.com/jobs/us/accommodationdrugfree.html (Opens in a new window) at https://www.apple.com/jobs/us/accommodation_drugfree.html .

Job Detail

• Location:
  Cupertino, California
• Company:
  Apple