Apple is recognized as the company with the strictest security measures and all with the idea of protecting the not yet released products from the curious eyes of journalists. Apple obliges its partners to comply with strict rules regarding the names/sketches of future products, and those who violate the rules are either handed over to the authorities or sued by Apple. Even in the conditions in which the company is "admired" for its security team, there is still a job available at Apple in the team that deals with the security of products not yet released.
The ideal candidate has a proven record of:
Simultaneously working with multiple constituencies, balancing disparate priorities, problem solving in high-demand situations, defining and establishing attainable measures of success, and regularly achieving positive outcomes in large-scale business environments.
Accurately assessing physical and logical security implementations and making actionable risk management recommendations that consider the impact on corporate culture, business operations, system architectures, manufacturing processes, and employee workflows.
The announcement was recently published and probably has nothing to do with the possible loss of any iPhone terminal or with the distribution of device sketches, but the company is determined to tighten even more the security "chain" around its products. Probably in the future we will find out less and less information about Apple products, but everything depends on the people who are employed within the company.
The candidate will be responsible for overseeing the protection of, and managing risks to, Apple's unreleased products and related intellectual property. Position will reside in Cupertino, California and will require up to 30% travel (international and domestic).
The individual will collaborate with other security managers by contributing to, and managing execution of, strategic initiatives set forth by Director, Global Security.
The ideal candidate has a proven record of:
Simultaneously working with multiple constituencies, balancing disparate priorities, problem solving in high-demand situations, defining and establishing attainable measures of success, and regularly achieving positive outcomes in large-scale business environments.
Accurately assessing physical and logical security implementations and making actionable risk management recommendations that consider the impact on corporate culture, business operations, system architectures, manufacturing processes, and employee workflows.
Formulating, and successfully implementing, a variety of security technologies using industry-recommended practices and/or risk frameworks.
Building and maintaining trusted relationships with internal and external business partners.
Mitigating risks associated with multi-tiered electronics supply chain.
Team leadership and contribution in a matrixed environment.
Exceptional communication and relationship-building skills.
Strong analytical skills.
Conduct and manage large-scale security and risk assessments.
Design sustainable strategies to mitigate risk and define associated metrics to measure overall performance.
Experience developing and delivering security awareness programs.
Strong, practical understanding of strengths and weaknesses of enterprise risk management frameworks and international security standards.
Solid project management and engagement management skills.
Advanced degree, such as MS in Risk Management, Information Assurance, Security Management or equivalent degree.
CPP, PSP, CISSP, CISA, CISM, CRISC or equivalent certification.
5+ years of security assessment and/or audit experience.
