Engineering Program Manager, Foundational Security, Apple Services Engineering

Apple Services Engineering (ASE) team is one of the most exciting examples of Apple's long-held passion for combining art and technology! We enable Apple's apps and services, and we do it on an extensive scale, to hundreds of millions of customers in over 35 languages to more than 150 countries. The ASE Security team is seeking an experienced Security Engineering Program Manager to help manage and scale our Foundational Security team. Within ASE you will work with and influence colleagues across Apple to drive programs that protect Apple's server infrastructure through security authorization, access controls, and foundational security software that runs at Apple's scale. As our work is integral to the entire infrastructure stack, you will have the opportunity to work with a wide variety of engineering teams across Apple. We cultivate strong relationships, build trust, and influence without direct authority. We communicate openly and clearly, collaborate enthusiastically, and value a diverse culture of healthy debate. Do these points resonate with you? If so, we want to talk!

Description

As a Security Engineering Program Manager in ASE, you are both a technical and functional expert in the world of infrastructure and foundational security at scale. While working directly with ASE's Foundational Security engineering team and cross-functional partners, you will identify opportunities to drive programs that secure Apple's server infrastructure end-to-end. This will include managing the delivery of security authorization and access control initiatives, driving process improvements, and working with service owners to develop innovative solutions to complex infrastructure security challenges. You will be responsible for identifying, planning, and delivering program security outcomes by independently engaging a broad set of internal and external stakeholders.

Minimum Qualifications

5+ years of experience as an Engineering Program Manager or Technical Program Manager.

2+ years of experience managing projects or programs in the field of security.

Project Management: Proficiency in managing complex projects, including defining scopes, setting timelines, and coordinating cross-functional teams to ensure timely and successful delivery.

Access Management Experience: Familiarity and experience with identity and access management principles, including user lifecycle management such as provisioning, access reviews, and deprovisioning, and how these apply to securing large-scale server environments.

BS in Computer Science or other technical field or related industry experience

Preferred Qualifications

3+ years of experience working in infrastructure security, access management, or a related foundational security domain.

Technical Proficiency: A solid understanding of server infrastructure, network architecture, and distributed systems - including familiarity with components such as fleet provisioning, load balancing, virtualization, and Kubernetes - sufficient to credibly partner with and drive programs alongside a senior engineering team.

Infrastructure Security Fluency: Working knowledge of foundational security concepts such as security authorization, access controls, PKI, X.509 certificates, and secure system design at scale.

Risk Management Skills: Ability to identify, assess, and prioritize security risks and communicate appropriate mitigation strategies to protect organizational assets.

Build Trust and Influence: Experience fostering collaboration and influencing stakeholders without direct authority to achieve program objectives.

Communication Skills: Ability to convey complex technical information to both technical and non-technical audiences, including executive and senior leadership, with clarity, confidence, and alignment.

Analytical and Problem-Solving Abilities: Strong analytical skills to assess complex security challenges and develop innovative solutions to address them.

Drive What Matters: Able to focus and simplify, balancing the details with goals, priorities, and trade-offs in mind.