Security Engineering & Architecture (SEAR) is at the core of Apple’s product security strategy and we’re fanatical about protecting our users.
We’re looking for an outstanding engineer to join our small, fast-paced team and help drive our strategy for continuous security policy enforcement and rapid regression detection at-scale.
As a Senior Security Engineer, you will design and develop security automations to support the rollout of new security technologies and uphold the effectiveness of existing security boundaries and mitigations. You’ll set technical direction, raise the bar on how we apply automation – both deterministic and agentic – and mentor engineers across the team. The role is expansive covering opportunities for impact across the entire software development lifecycle.
You will join a team at the intersection of security research and software engineering, where the work you build directly shapes the speed and depth at which Apple can identify and address vulnerabilities.
Our team delivers continuous security automation across all of Apple’s operating systems and products – spanning the whole software development lifecycle and combining traditional engineering with agentic tooling – to enforce security policy and detect regressions at scale.
You will be a senior member of technical staff responsible for generating data-driven insights, advocating for new or improved security interventions, rapid prototyping, scaling up and evangelising their adoption. You will be responsible for upholding security invariants and policies, in a continuous fashion, in order to provide high confidence in the integrity of our frontline mitigations and boundaries.
You will work cooperatively with other parts of Apple on a broad range of technologies and initiatives to enhance security. This includes security design reviews and vulnerability researchers, as well as product engineers across Apple.
We’re looking for someone with a deep understanding of security engineering principles, software delivery, and secure SDLC; and an understanding of the engineering challenges, organisational dynamics, and the process trade-offs of building a continuous security capability.
This position may require some travel to other Apple sites.
Description
You will join a team at the intersection of security research and software engineering, where the work you build directly shapes the speed and depth at which Apple can identify and address vulnerabilities.
Our team delivers continuous security automation across all of Apple’s operating systems and products – spanning the whole software development lifecycle and combining traditional engineering with agentic tooling – to enforce security policy and detect regressions at scale.
You will be a senior member of technical staff responsible for generating data-driven insights, advocating for new or improved security interventions, rapid prototyping, scaling up and evangelising their adoption. You will be responsible for upholding security invariants and policies, in a continuous fashion, in order to provide high confidence in the integrity of our frontline mitigations and boundaries.
You will work cooperatively with other parts of Apple on a broad range of technologies and initiatives to enhance security. This includes security design reviews and vulnerability researchers, as well as product engineers across Apple.
Minimum Qualifications
- Drive and agency: You know how to use tools to learn new areas, experiment, and develop security insights across unfamiliar technologies. You’re curious and interested in explaining. You have a sense of ownership and pride in improving the environment.
- OS security fundamentals: knowledge of contemporary mitigation techniques, vulnerability classes, and security architectures
- Expert proficiency in one or more: Python, Swift, C/C++/Objective-C
- AI/agentic fluency: You have hands-on experience using agentic/LLM-based coding tools. You’re able to build and refine Skills, Agents and AI workflows, not just operate them. You’re able to independently verify or refute a finding rather than accept it at face value.
Preferred Qualifications
- Proven experience building and integrating security-enforcing controls across the full software lifecycle
- Familiarity with Apple platform security architectures (iOS, macOS)
- Knowledge of observability tools and techniques
- Experience building visualisations for complex technical information
- Enthusiasm for new technologies and growth
- Demonstrated ability to architect solutions to ambiguous, cross-functional problems – from initial design through delivery – working independently and in close collaboration with partner teams
- Understanding of vulnerability research concepts, offensive security tooling, or security analysis workflows (static, dynamic, or binary)
#J-18808-Ljbffr…
