Senior Strategic Risk Manager - Account Security
Seattle, WA, USA
USD 171,600-302,200 / year + Equity
Posted on Jun 25, 2026
The Apple Services Engineering Security team builds and provides secure systems and infrastructure that fuel Apple’s services (such as iCloud, iTunes, Siri, App Store, and Maps). As part of the ASE Security team, you will help manage the security needs of Apple’s services around the world. You will build and integrate the security controls, guardrails, and frameworks that help protect our customers data in Apple’s infrastructure. Your work will help build solutions to a variety of outstanding security risks to Apple systems and data. Join us, and you’ll play a meaningful role in ensuring the highest standard of security for one of the most-watched companies in the world.
In this role, you will work with highly skilled security professionals passionate about identifying, assessing, and mitigating security risks. This role is central to the controls that protect Apple’s customers, data, and brand. You’ll have the opportunity to design security processes and technology with a global impact. Combining aspects of solutions engineering, design review, architecture, analysis and technical program management, you will help identify and surface risks to customer accounts and data, and help develop short and long term roadmaps to address it. You will play a hands on role in ensuring that programs are reviewed, adjusted, implemented and tested appropriately.
- Identify areas for improvement related to user account security and establish appropriate security goals
- Lead discovery conversations to understand architecture, current security posture, and blockers to adoption
- Measure and communicate risks to leaders and stakeholders
- Develop and implement AI technologies to manage risk
- Perform post-incident reviews
- Research and identify emerging technologies, threats, and vulnerabilities to proactively define security requirements and controls before they reach production.
- BS in Computer Science, Computer Engineering, or Information Security, or 5+ years of equivalent hands-on experience
- Demonstrated ability to design, document, and implement new security processes
- Deep understanding of threat modeling, operational threat intelligence, and common attack vectors and frameworks.
- Strong understanding of applied cryptography, access control, and other security mechanisms
- Experience with enterprise log collection and analysis platforms (e.g., Splunk, OSQuery).
- Experience in applying and experimenting with AI/ML, to solve security related use-cases
- Experience working with data engineers to define metrics and interpret results from detection and risk models.
- Knowledge of authentication mechanisms, including OAuth, SAML, and other identity management protocols