Security Engineer - Hardware Security Module

Santa Clara Valley (Cupertino), California, United States
Software and Services


Posted: Sep 13, 2019
Weekly Hours: 40
Role Number: 200101195
Imagine what you could do here. At Apple, new ideas have a way of becoming great products, services, and customer experiences very quickly. Bring passion and dedication to your job and there's no telling what you could accomplish. This position is with the Crypto Services team, and is responsible for protecting some of the most sensitive data at Apple - cryptographic keys. This team runs Apple's PKI and provides highly available, fault-tolerant PKI and encryption services that are leveraged across various teams and support almost every Apple product including iPhone, iPad, Mac, Watch, Apple TV, iTunes, iCloud, App Store, Apple Pay, Apple ID, and more. We are looking for a security expert for our Application Security Engineer role. This role will focus on the secure design and delivery of features and platforms within the Crypto Services team. This is a highly technical, hands-on role that requires experience and expertise evaluating risk, application stacks, and cryptographic implementations. The successful candidate will drive security and compliance initiatives within the Crypto Services team.

Key Qualifications

  • Experience deploying, managing, and monitoring hardware security modules (HSMs)
  • Experience with Cloud Computing platforms (particularly AWS) a plus
  • Experience applying requirements of regulatory compliance controls, such as PCI, WebTrust, GDPR, etc.
  • Practical experience with Java and/or Python is a plus
  • Understanding of cryptographic algorithms is a plus
  • Understanding of standard networking protocols and components such as HTTP, DNS, TCP/IP, ICMP and load balancing
  • Track record of practical problem solving, excellent communication, and documentation skills
  • Experience with DevOps tools, processes, and culture. Experience with Puppet, Chef or Ansible
  • A systematic, test-and-measure approach to continually improving service operations


You are highly self-motivated with a real passion for excellence, quality and detail. This position requires experience with and working knowledge of a variety of HSM products in an enterprise environment. You should be strongly motivated by learning new technologies. ▪ Take ownership to deploy, manage and establish hardware security modules (HSM's) theory of operations ▪ Bring passion and dedication to the job, commit to our vision and support the developer community ▪ Work with Site Reliability Engineering, Infrastructure, and PKI Compliance teams to evaluate risk of new features ▪ Foster a strong security and compliance culture throughout the organization ▪ Work on site reliability engineering tasks as required ▪ Explore and evaluate new technologies and solutions to push the capabilities forward, getting ahead of customer's needs, innovate and continually improve ▪ Strong communication skills and ability to work effectively across multiple business and technical teams ▪ Demonstrate ability to deliver results on time with high quality

Education & Experience

BS degree in Computer Science or equivalent work experience

Additional Requirements

  • 10% Travel