Apple Media Products - Server-Side Security Researcher
Paris, Paris Region, France
Software and Services
Apple Media Products uses groundbreaking techniques to improve the security of hundreds of millions of devices and services, from the iPhone to Apple TV+. We value the privacy of users, the integrity of creative content and go further to protect them. We're looking for someone passionate about security, to take up the challenge of fighting content piracy and improving the security of our products and services.
- Solid experience in software security: source code audit, vulnerability research, and/or penetration testing
- Knowledge of C and Java languages, and their debugging and programming environnements
- Knowledge of typical server-side environnements and architectures, ability to understand and navigate server applications source code
- Experience with working with large codebases, preferably Java and C
- Experience with working with complex protocols and software architectures
- Understanding of cryptography
- Knowledge of scripting and programming languages
- THE FOLLOWING WOULD BE A PLUS:
- Knowledge of media content protection mechanisms and associated attacks
- Experience in finding logical software vulnerabilities
Working as part of an extraordinary team of security experts, we have the freedom to bring new ideas and design innovative solutions. Apple Media Products implements and deploys media services at scale, such as Apple TV+, or Apple Music. Expanding these services to new platforms and users means using a variety of media content protection mechanisms, existing or custom made. To help prevent content piracy, you will conduct security assessments on a variety of complex products and content protection technologies at scale. You'll need to get familiar with large server-side code bases and conduct security assessments of critical components of a content protection ecosystem, searching for applicative or logical vulnerabilities that could lead to the exposure of protected assets. You'll develop exploits to demonstrate the security issues you identify. You will collaborate closely with a team of reverse engineers, content protection experts, cryptographers, or developers, to discuss and drive the implementation of mitigations and security hardening you proposed. Based in Paris, we are passionate about security, and work with a variety of cross-functional teams across Apple, worldwide. To work together, we all speak English and you'll need to be fluent too, but speaking French is not required for this role. If this is you, we'd love to hear from you.
Education & Experience
Master or PhD in Computer Science, Information Security or equivalent (e.g. Electronics, Physics or Mathematics) or work experience. Apple’s most important resource, our soul, is our people. Apple benefits help further the well-being of our employees and their families in meaningful ways. No matter where you work at Apple, you can take advantage of our health and wellness resources and time-away programmes. We’re proud to provide stock grants to employees at all levels of the company, and we also give employees the option to buy Apple stock at a discount — both offer everyone at Apple the chance to share in the company’s success. You’ll discover many more benefits of working at Apple, such as programmes that match your charitable contributions, reimburse you for continuing your education and give you special employee pricing on Apple products. Apple benefits programmes vary by country and are subject to eligibility requirements. Apple is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. Apple is committed to working with and providing reasonable accommodation to applicants with physical and mental disabilities.