Apple Hiring for Engineering Program Manager, Compliance – Crypto Services Job at Cupertino, CA Full Time
Posted: Sep 8, 2022
Weekly Hours: 40
The Engineering Program Manager, Compliance – Crypto Services will be responsible for leading Apple’s Compliance program for Apple Certification Authority (CA) to ensure compliance with WebTrust, browser requirements, policies, and internal procedures. The successful candidate will have knowledge of common compliance requirements, and regulatory frameworks as well as a solid understanding of various technologies, information security and risk management.
5+ years of experience in compliance field related to various requirements such WebTrust, PCI, SOX and GDPR.
Experience in CA / Browser Forum Baseline Requirements and major root store policies.
Working knowledge of Public Key Infrastructure (PKI) is a must.
Direct experience with internal control, risk management, IT governance and audit frameworks.
Excellent organizational and communication skills.
Data-driven analytical skills and good judgment to extract insights and prioritize opportunities.
Ability to thrive in a fast-paced, dynamic, sometimes ambiguous environment.
Excellent problem identification, problem solving, and analytical skills.
Passion for continuous learning and process improvement.
Passion for Privacy, Security and Compliance.
The Crypto Services team at Apple is responsible for protecting some of the most sensitive and critical data you can imagine. Utilizing cryptographic keys and functions, we provide applications and services that are leveraged across many of the most business-critical functions within Apple. Apple CA provides PKI across many products and services of Apple and it is one of the largest Certification Authorities in the industry. The Engineering Program Manager will work closely with PKI engineers, security engineers, site reliability engineers, software engineers, external root vendors, and external auditors. In this role you will: Manage external audits for WebTrust and lead remediation efforts with internal teams. Perform internal risk assessments, identify gaps, and design/remediate procedures and controls to mitigate risks. Create and maintain detailed project tasks and communicate across multiple functional teams. Lead process improvement opportunities for efficiency and automation for Compliance controls and procedures. Manage incident management process end-to-end with the appropriate external parties when compliance incidents occur.
Education & Experience
Bachelor’s degree in Computer Science, or Management Information Systems preferred.