SonicJobs Logo
Left arrow iconBack to search

AI Security Engineer - Red Team

Apple
Posted a month ago, valid for a month
Location

Seattle, WA 98164, US

Salary

Competitive

Contract type

Full Time

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • Apple Services Engineering (ASE) is seeking an AI Security Engineer to lead in-depth security reviews of critical services and infrastructure.
  • The role requires a minimum of 6 years of experience in information security or software engineering, with at least 2 years focused on conducting security reviews.
  • The position offers an opportunity to collaborate with various teams to identify and mitigate complex security risks while utilizing AI tools to enhance efficiency.
  • Candidates should possess extensive experience in infrastructure, cloud, and application security, along with the ability to communicate risks effectively to engineering and leadership teams.
  • Salary details are not specified, but the role emphasizes the importance of deep technical expertise and contributions to the security community.
We are the Apple Services Engineering (ASE) Security Red Team. We focus on deep technical security review work of critical ASE services and infrastructure. These security reviews will be scoped and focused on review depth and quality. We are growing our team and looking an AI Security Engineer to lead deep reviews that identify meaningful security improvement opportunities. In this role, you will work closely with the security engineering, InfoSec, privacy, SRE, detection, and design review teams to keep Apple's services secure for our users. You will identify security weaknesses, validate and design detection mechanisms, and provide actionable recommendations to enhance our security posture. You will go beyond simple to find risks and identify obscure and complex risks within complex services. You will collaborate with various architecture and engineering teams to continuously validate and improve our security controls and detection capabilities, with a strong focus on developing repeatable testing frameworks and metrics-driven security improvements. If you love diving into complex and important systems, and driving the security of that system over time, we want to talk to you!

Description


In this role, you will scope and lead focused security reviews on critical internet scale applications and supporting infrastructure. You will learn the services architecture and risk profile to build a scope that enables a meaningful security review. You will use AI to expedite all stages of your work, while maintaining accountability for all outcomes. You will use your depth of knowledge to identify risks that go undetected by agentic tools and processes to reinforce and improve those processes.

Minimum Qualifications


6+ years in an information security field or software engineering; 2 or more of those years conducting security reviews 2+ years of manually reviewing source code to assist in finding vulnerabilities Experience building or contributing to AI security toolss Extensive infrastructure, cloud, and application security experience Experience communicating risk to engineering and leadership teams Experience going deep on complex systems for extended engagements

Preferred Qualifications


Bachelors degree in Computer Science / Engineering or a related, with emphasis in security related fields (or equivalent experience) Experience constructing threat scenario narratives and building exploit chains Community contributions like public CVEs, bug bounty recognition, open source tools, blogs, talks etc.



Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.