Senior Strategic Risk Manager - Account Security - Apple

Key Responsibilities

• Define and implement security risk management strategies for Apple services, aligning with business objectives and regulatory requirements.
• Design, integrate, and maintain security controls and guardrails across cloud and on‑premise infrastructure.
• Conduct threat modeling and risk assessments to identify and mitigate emerging security risks.
• Collaborate with engineering, product, and operations teams to embed security best practices into the development lifecycle.
• Drive compliance initiatives (ISO 27001, SOC 2, GDPR) and ensure continuous audit readiness.
• Provide executive reporting on risk posture, incidents, and remediation progress.

Requirements

• 10+ years of experience in security risk management, preferably in large‑scale consumer services.
• Deep knowledge of cloud security architectures (AWS, GCP, Azure) and Identity & Access Management frameworks.
• Proven expertise in threat modeling, vulnerability assessment, and security control implementation.
• Strong understanding of compliance standards such as ISO 27001, SOC 2, and data privacy regulations.
• Excellent communication and stakeholder management skills, with the ability to influence senior leadership.