Apple PKI Compliance & Audit Program, IS&T Enterprise Systems

The Crypto Services team at Apple is responsible for protecting some of the most sensitive and critical data you can imagine. Using cryptographic keys and functions, we provide applications and services that are leveraged across many of the most business-critical functions within Apple. The Apple PKI issues certificates used across many products and services of Apple. The Apple PKI Compliance & Audit Program Lead will work closely with PKI engineers, security engineers, site reliability engineers, software engineers, and external auditors.IN THIS ROLE YOU WILL:Lead and execute Apple PKI’s compliance programManage external audits for WebTrust and lead remediation efforts with internal teams!Perform internal risk assessments, identify gaps, and design/remediate procedures and controls to mitigate risks. Ensure the CA environment is compliant with the CP/CPS via management testing to ensure effectiveness of controls. Create and maintain detailed project tasks and communicate across multiple functional teamsLead process improvement opportunities for efficiency and automation for compliance controls and procedures!Be the domain expert for the public CA requirements, major root store policies, and internal procedures manage incident management process end-to-end with the appropriate external parties when compliance incidents occur