Penetration Tester, Retail Engineering

Sunnyvale,California,United States

Software and Services

In a fast-evolving digital world, our team seeks a Security Penetration Tester to take on emerging cyber threats. With us, you'll play a pivotal role in safeguarding Apple's Online Store, Apple Store App, flagship Retail locations, and vital backend customer and payment systems. You'll get to dive into ground breaking technologies, collaborate with industry experts, and safeguard critical digital assets. Join us to turn your skills in code analysis, penetration testing, and security research into impactful results. If this sounds like a role for you, we would love to meet you!

Description

As a penetration tester, you can expect to do the following: - Conduct manual penetration testing against web applications, APIs, cloud environments, infrastructure, mobile applications and custom technologies. - Communicate these findings in high-quality reports and presentations - Provide security advice and partnership to engineering teams and non-technical partners - Develop scripts and tooling to augment penetration testing activities or demonstrate proof of concepts - Source code review of large sophisticated applications - Become a domain expert for colleagues in an area of security and penetration testing, shape security requirements, technical documentation and testing methodology. Guide others and share expertise.

Minimum Qualifications

• Passion for information security, particularly in penetration testing

• In-depth knowledge of web application security, system and infrastructure security

• Expertise in a specialist security topic such as cloud security, mobile security, container security etc.

• Ability to read and understand source code (Java, JavaScript, Go etc), and find vulnerabilities in sophisticated code bases

• Ability to learn new skills, concepts and technologies

• Strong written and verbal communication skills, ability to communicate vulnerabilities to a variety of partners

• Strong understanding of fundamental computing, database, networking and security concepts

Key Qualifications

Preferred Qualifications

• OSCP or OSWE certification (preferred)

• Experience with CTFs or hacking labs

• Proficiency in MacOS and other Unix based systems

• Ability to grasp large sophisticated systems and context-switch when needed

• Programming/scripting skills (Python, JavaScript, Go, etc)

• Knowledge of cloud architecture and security

• Publications, security research, bug bounties or CVEs are highly regarded

• Bachelor's in Computer Science or equivalent

Education & Experience

Additional Requirements

Pay & Benefits

• At Apple, base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay range for this role is between $143,100 and $214,500, and your base pay will depend on your skills, qualifications, experience, and location.Apple employees also have the opportunity to become an Apple shareholder through participation in Apple’s discretionary employee stock programs. Apple employees are eligible for discretionary restricted stock unit awards, and can purchase Apple stock at a discount if voluntarily participating in Apple’s Employee Stock Purchase Plan. You’ll also receive benefits including: Comprehensive medical and dental coverage, retirement benefits, a range of discounted products and free services, and for formal education related to advancing your career at Apple, reimbursement for certain educational expenses — including tuition. Additionally, this role might be eligible for discretionary bonuses or commission payments as well as relocation.Learn more (https://www.apple.com/careers/us/benefits.html) about Apple Benefits.Note: Apple benefit, compensation and employee stock programs are subject to eligibility requirements and other terms of the applicable plan or program.

• Apple is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics.Learn more about your EEO rights as an applicant. (https://www.eeoc.gov/sites/default/files/2023-06/22-088_EEOC_KnowYourRights6.12ScreenRdr.pdf)

Apple Footer

Apple is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race,color,religion,sex,sexual orientation,gender identity,national origin,disability,Veteran status,or other legally protected characteristics. Learn more about your EEO rights as an applicant (Opens in a new window) .

Apple will not discriminate or retaliate against applicants who inquire about,disclose,or discuss their compensation or that of other applicants. United States Department of Labor. Learn more (Opens in a new window) .

Apple will consider for employment all qualified applicants with criminal histories in a manner consistent with applicable law. If you’re applying for a position in San Francisco,review the San Francisco Fair Chance Ordinance guidelines (opens in a new window) applicable in your area.

Apple participates in the E-Verify program in certain locations as required by law. Learn more about the E-Verify program (Opens in a new window) .

Apple is committed to working with and providing reasonable accommodation to applicants with physical and mental disabilities. Apple is a drug-free workplace. Reasonable Accommodation and Drug Free Workplace policy Learn more (Opens in a new window) .