Senior Manager - Strategic Risk

About The Position

Requirements

• 7+ years of experience in Information Security with a focus on incident response, security engineering, or intrusion detection.
• Deep understanding of threat modeling, operational threat intelligence, and common attack vectors and frameworks.
• Strong knowledge of system and network hardening practices.
• Exceptional analytical and investigative skills, with hands-on experience in root cause analysis.
• Experience applying AI/ML techniques to analyze CVEs and prioritize high-risk vulnerabilities.
• In-depth knowledge of macOS, Linux, or Windows operating systems and distributed systems design.
• Expertise in analyzing endpoint, network, and application logs at scale.
• Scripting and/or software development experience.
• Demonstrated ability to design, document, and implement new security processes.

Nice To Haves

• B.S. in Computer Science, Engineering, or equivalent technical field—or equivalent practical experience.
• Security certifications such as OSCP, GIAC, or CCNP/CCIE are a plus.
• Experience with enterprise log collection and analysis platforms (e.g., Splunk, OSQuery).
• Understanding of exploit development and conditions required to trigger different vulnerability types.

Responsibilities

• Evaluate and assess threats and vulnerabilities to inform risk decisions and security strategy.
• Collaborate with cross-functional teams to strengthen Apple’s security posture across incident response and vulnerability management.
• Lead and coordinate response activities in alignment with Apple’s Emergency Response Plan and Security Operations Center (SOC).
• Develop and execute playbooks for common security issues.
• Conduct research and post-incident analysis to refine response strategies.
• Partner with teams to deliver training and workshops on security response best practices.
• Define clear criteria and protocols for security emergency response.