Platform Engineer - Security (Platform Architecture)

At Apple, we strive to do our life's best work by building a seamless ecosystem across tightly integrated hardware, software, and services. The Platform Architecture group is at the forefront of defining, designing and connecting this ecosystem. PA-Security group is a team of engineers who are dedicated to securing the world's most advanced consumer devices that are trusted for protecting individual privacy and storing personal data, while providing the highest quality user experience. We're looking for hardworking and inspired individuals to help raise the bar on the security of Apple's growing product line up, while continuing to ensure a quality user experience. In this role, you will identify and define platform level security requirements for new products, define and maintain device-level security policies across multiple environments for existing products, and drive adoption of platform level security architectures incorporating hardware, software, and server elements, through our cross-function partners. Together with the rest of the Platform Architecture team, your work will ensure millions of customers all around the world can confidently trust the devices they use every single day.

Description

As a member of Platform Architecture, you will lead cross-functional teams throughout the product development cycle. Further, as part of this high-visibility team, you will frequently collaborate with other security architects and researchers across Apple including software, hardware, silicon, server, and product groups to identify, define and design security solutions that elevate overall security profile of our SOCs, devices, and factories.

Responsibilities

• Develop threat models and associated security architectures for exciting new Apple products and technologies, derive system security requirements, and design balanced and novel mitigations in creative collaboration with iconic product and engineering teams.
• Develop detailed system-level specifications to guide product development, integration, and quality assurance teams to aid integration of our security technologies across team boundaries (e.g. client/server).
• Use interpersonal and technical skills to champion adoption of our industry leading security technologies across multiple product categories.
• Identify emerging threats, new attacks, and mitigation techniques as the external landscape evolves and drive architecture evolution to stay ahead of industry.

Minimum Qualifications

• BS degree or relevant industry experience.
• Experience working with basic cryptographic principles. (e.g., symmetric vs asymmetric crypto, encryption vs authentication, post-quantum algorithms, or public key infrastructure implementations)
• Experience with platform security primitives. (e.g. Secure Boot, Secure Update, Secure Communication across entities, Secure lifecycle management etc.)
• Experience in threat modeling of security features and architecture. (preferably spanning across software, hardware and system designs)
• Experience in leading cross-functional initiatives to define, drive and productize security features.

Preferred Qualifications

• Minimum of 10 years relevant industry experience.
• Experience in threat modeling of security features and architecture, specifically spanning across software, hardware and system designs.
• Experience in effectively communicating highly technical details to a non-technical audience.
• Experience with user identification and authentication technologies, such as biometrics, smart cards etc.
• Experience with Operating System concepts, such as isolation, privilege levels etc. and platform security concepts, such as virtualization and confidential computing.
• Experience with defining / evaluation of platform security features spanning across client/server and deployed across infrastructure in factories, or organization, or internet.
• Basic experience with programming and/or auditing experience with Python, C, and unix shell scripting, and with utilizing AI to facilitate research, design and evaluation activities.

Apple is an equal opportunity employer that is committed to inclusion and diversity. We seek to promote equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. Learn more about your EEO rights as an applicant. At Apple, we believe accessibility is a fundamental human right. You'll find that idea reflected in everything here in our culture, our benefits and our digital tools. By welcoming as many perspectives as possible, we help you build a career where you feel like you belong. Learn about accessibility in Apple's workplace. Learn about reasonable accommodations for job applicants. Apple accepts applications to this posting on an ongoing basis.