Security Researcher, Platform Architecture

Cupertino, California, United States
Hardware

Summary

Posted:
Role Number:200567045
Help Apple secure the world’s most advanced consumer devices which people trust to store their personal and professional data. We believe that the best defense is a good offense, and that means finding vulnerabilities before the community does. We're looking for dedicated and inspired individuals to join our team and attack Apple's products, with the goal of better safeguarding our users. The job involves performing security reviews of low level software and hardware, side channel and fault attacks on SoC hardware, and research into advanced physical attacks.

Description

Customers’ security, privacy, and safety are very important to Apple. Your job will be to analyze our products and attempt to break them in ways that could undermine these goals, including when the attacker is in possession of the Apple device. In order to do that, you will be expected to: - Examine embedded systems and find security vulnerabilities in Apple or 3rd party firmware and bootloaders - Develop proof-of-concept exploits for found vulnerabilities - Examine new Apple silicon security features and demonstrate if/how they can be defeated - Perform physical attacks on hardware in a lab environment - Propose new ideas for security hardening and mitigations - Stay abreast of modern hacking techniques against Apple products, including those where the attacker is in close proximity or possession of the device

Minimum Qualifications

  • Experience finding security vulnerabilities in low-level software and developing exploits
  • Understanding of SoC architecture and hardware security primitives
  • Programming background in C, C++ and/or Python

Key Qualifications

Preferred Qualifications

  • 3+ years of industry experience or equivalent independent research
  • Familiarity with one or more of the following: real time operating systems, cryptographic primitives and protocols, CPU microarchitecture
  • Experience with tools for fuzzing and analyzing code
  • Familiarity with assembly and ARM instruction set
  • Experience performing side channel analysis (SCA) and fault injection (FI) attacks on complex SoC designs
  • Understanding of security trends and can develop new classes of attacks

Education & Experience

Additional Requirements

Pay & Benefits

  • Apple is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. Learn more about your EEO rights as an applicant.