Information Security Business Partner Lead - Product Ops & Supply Chain

Imagine what you could do here. At Apple, new ideas have a way of becoming extraordinary products, services, and customer experiences very quickly. Bring passion and dedication to your job and there's no telling what you could accomplish.\\n\\nThe AIS Business Partner Lead - Product Ops & Supply Chain will act as the security liaison between the Apple Information Security (AIS) organization and Apple's global Product Operations teams. This role is critical in understanding, translating, and delivering the security needs of this complex and dynamic business area, which encompasses manufacturing systems, supply chain infrastructure, logistics platforms, operational technology, factory operations, and global supplier networks.\\n\\nThis individual will ensure AIS programs and service solutions meet operational demands while driving strategic initiatives to enhance overall security posture. A key aspect of this role is to ensure the shared priorities of both AIS and Product Operations are clearly understood, effectively translated into actionable plans, and ultimately met, fostering a seamless and secure operational environment for Apple's supply chain. They will be responsible for using their technical acumen to lead threat models and architecture reviews for Product Operations systems. Collaborating across AIS and Product Operations teams, this leader will develop tailored security roadmaps, ensure information security service delivery, and provide executive-level support to these teams.\\n

ou will work as part of the Apple Information Security - Business Engagement team, helping drive the day-to-day security needs of our Product Operations partners, while delivering the overall strategies and services of Apple Information Security.\n\n\n* Serve as the primary AIS point of contact for Product Operations & Supply Chain teams, developing a deep understanding of manufacturing systems, supply chain infrastructure, operational technology, and global logistics to identify and address security risks.\n* Collaborate with AIS service teams to ensure security offerings align with Product Operations needs and priorities, proactively identifying gaps and opportunities.\n* Translate Product Operations business requirements to technical requirements that drive AIS engineering decisions and service delivery.\n* Create and maintain comprehensive security roadmaps tailored to Product Operations, accounting for manufacturing cycles, supply chain constraints, and operational realities.\n* Provide subject matter expertise on security advisement, ensuring alignment with enterprise security standards and policies while understanding operational constraints.\n* Partner with embedded security teams and individuals across Product Operations to support risk management and mitigation strategies.\n* Drive cross-functional collaboration to resolve escalations and ensure timely resolution of security incidents impacting manufacturing or supply chain operations.\n* Oversee and deliver threat models and security architecture reviews for Product Operations systems, manufacturing infrastructure, and supply chain platforms.\n* Represent AIS in Product Operations executive meetings, providing updates, insights, and strategic guidance to foster strong security culture and alignment.\n* Measure and communicate quantifiable impacts of AIS security services with Product Operations stakeholders.\n* Continuously evaluate the effectiveness of AIS services in meeting supply chain and manufacturing business needs, recommending improvements and advocating for Product Operations interests within AIS to drive continuous improvement in service delivery.\n

* 10+ years of experience in Information Security or related security fields.\n* 8+ years of experience in securing large operations, supply chain, or manufacturing environments.\n* Strong knowledge of supply chain processes and technologies, with a focus on identifying and mitigating technical security risks.\n* Extensive experience with security threat modeling and architecture reviews for operational technology and manufacturing systems.\n* Expertise in security risk management, governance, and compliance frameworks (e.g., NIST, ISO 27001).\n* Expertise in SaaS security and cloud platforms used in supply chain operations.\n* Expertise in automating and improving security processes and applications.\n* Proven ability to build and maintain effective cross-functional relationships, including at the executive level.\n* Strong communication and presentation skills, with the ability to translate technical concepts for non-technical audiences.\n* Track record of successfully managing security escalations and delivering quantifiable security improvements.\n* Ability to work in a fast-paced, dynamic environment and manage multiple priorities effectively.

* Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field.\n* Master's degree in Business Administration (MBA), Information Security, or a related discipline.\n* Experience or exposure to working with Managed Service Security Providers (MSSP).\n* Experience with operational technology (OT) security and industrial control systems.\n* Knowledge of manufacturing systems and infrastructure security best practices.\n* Experience with global supply chain security programs and supplier risk management.\n* Understanding of logistics platforms and distribution network security.