Apple PKI Compliance & Audit Program, IS&T Enterprise Systems
Location
Cupertino, CA | United States
Job description
The Apple PKI Compliance & Audit Program Lead is responsible for leading and executing Apple PKI’s compliance program to ensure compliance with the CA/Browser Forum Baseline Requirements, root program policies, WebTrust, and other external and internal policies. They will also lead Apple’s annual WebTrust audits. The successful candidate will have knowledge of common compliance requirements and regulatory frameworks, PKI, and a solid understanding of various technologies, information security, and risk management.
Key Qualifications
- 5 + years experience in a compliance field such as WebTrust, PCI, SOX and GDPR. Experience in CA / Browser Forum Baseline Requirements and major root store policies.
- Working knowledge of Public Key Infrastructure (PKI) is a must.
- Direct experience with internal control, risk management, IT governance and audit frameworks.
- Excellent organizational and communication skills.
- Ability to thrive in a fast-paced, multifaceted, sometimes ambiguous environment.
Description
The Crypto Services team at Apple is responsible for protecting some of the most sensitive and critical data you can imagine. Using cryptographic keys and functions, we provide applications and services that are leveraged across many of the most business-critical functions within Apple. The Apple PKI issues certificates used across many products and services of Apple. The Apple PKI Compliance & Audit Program Lead will work closely with PKI engineers, security engineers, site reliability engineers, software engineers, and external auditors.
IN THIS ROLE YOU WILL:
Lead and execute Apple PKI’s compliance program
Manage external audits for WebTrust and lead remediation efforts with internal teams!
Perform internal risk assessments, identify gaps, and design/remediate procedures and controls to mitigate risks. Ensure the CA environment is compliant with the CP/CPS via management testing to ensure effectiveness of controls. Create and maintain detailed project tasks and communicate across multiple functional teams
Lead process improvement opportunities for efficiency and automation for compliance controls and procedures!
Be the domain expert for the public CA requirements, major root store policies, and internal procedures manage incident management process end-to-end with the appropriate external parties when compliance incidents occur
Education & Experience
Bachelor’s degree in Computer Science, or Management Information Systems preferred
Additional Requirements
Pay & Benefits
- At Apple, base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay range for this role is between $160,700.00 and $241,500.00, and your base pay will depend on your skills, qualifications, experience, and location. Apple employees also have the opportunity to become an Apple shareholder through participation in Apple’s discretionary employee stock programs. Apple employees are eligible for discretionary restricted stock unit awards, and can purchase Apple stock at a discount if voluntarily participating in Apple’s Employee Stock Purchase Plan. You’ll also receive benefits including: Comprehensive medical and dental coverage, retirement benefits, a range of discounted products and free services, and for formal education related to advancing your career at Apple, reimbursement for certain educational expenses — including tuition. Additionally, this role might be eligible for discretionary bonuses or commission payments as well as relocation. Learn more about Apple Benefits. Note: Apple benefit, compensation and employee stock programs are subject to eligibility requirements and other terms of the applicable plan or program. Apple is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics.
The Crypto Services team at Apple is responsible for protecting some of the most sensitive and critical data you can imagine. Using cryptographic keys and functions, we provide applications and services that are leveraged across many of the most business-critical functions within Apple. The Apple PKI issues certificates used across many products and services of Apple. The Apple PKI Compliance & Audit Program Lead will work closely with PKI engineers, security engineers, site reliability engineers, software engineers, and external auditors.
IN THIS ROLE YOU WILL:
Lead and execute Apple PKI’s compliance program
Manage external audits for WebTrust and lead remediation efforts with internal teams!
Perform internal risk assessments, identify gaps, and design/remediate procedures and controls to mitigate risks. Ensure the CA environment is compliant with the CP/CPS via management testing to ensure effectiveness of controls. Create and maintain detailed project tasks and communicate across multiple functional teams
Lead process improvement opportunities for efficiency and automation for compliance controls and procedures!
Be the domain expert for the public CA requirements, major root store policies, and internal procedures manage incident management process end-to-end with the appropriate external parties when compliance incidents occur Bachelor’s degree in Computer Science, or Management Information Systems preferred
Job tags
Salary