Apple logo

DevSecOps Engineer - Health Software

Apple
Full-time
On-site
Sunnyvale, California, United States
Healthcare Tech & Health Informatics
We’re looking for an experienced DevSecOps engineer, with specific expertise in application security or infrastructure security. Your work will be a mix between technical and human centered, as we work to build quality infrastructure and a strong security culture within Apple Health Software. Bring ideas and passion, as you’ll have room to shape this role and our roadmap. Initial responsibilities will include: -Building security-focused infrastructure and process automations, with a focus on shifting security left in the software development lifecycle -Reviewing code (primarily Java and Python) for vulnerabilities, and guiding remediation efforts -Leading security efforts in design reviews, and guiding the creation of a comprehensive threat modeling program -Engaging with engineers and internal customers to answer questions, respond to concerns, and empower work organization-wide -Contribute to vulnerability management efforts, to help teams prioritize and remediate known vulnerabilities -Joining DevOps on-call rotation to support our infrastructure and customers Beyond that, your journey can take many paths. As we build a culture of security excellence, here are a few ideas we’re excited to work on: -Build an offensive security program and methodology to conduct security assessments, penetration tests, and red team engagements -Lead fun security demonstrations, workshops, and exercises for our software engineers, in order to strengthen security awareness and secure software development


  • 5 years of experience with offensive security work, including security assessments, penetration tests, or red team engagements
  • Experience with threat modeling
  • Experience evaluating and implementing security tooling throughout the software development lifecycle
  • Familiarity with a variety of services offered by public clouds like Amazon Web Services (AWS) and Google Cloud Platform (GCP)
  • Familiarity with containerization technologies like Docker and Kubernetes
  • Strong familiarity high-level programming languages like Java and Python
  • BS Computer Science or equivalent


  • Familiarity with infrastructure and security automation, including best practices
  • Experience conducting code reviews, finding vulnerabilities, and providing suggestions for remediation
  • Experience contributing security input to design reviews
  • Strong communication and cross-functional skills, including ownership and a desire to work with others on creative solutions, without compromising security
  • Curiosity, the desire to keep learning, and the ability to change your mind


At Apple, base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay range for this role is between $175,800 and $312,200, and your base pay will depend on your skills, qualifications, experience, and location.

Apple employees also have the opportunity to become an Apple shareholder through participation in Apple’s discretionary employee stock programs. Apple employees are eligible for discretionary restricted stock unit awards, and can purchase Apple stock at a discount if voluntarily participating in Apple’s Employee Stock Purchase Plan. You’ll also receive benefits including: Comprehensive medical and dental coverage, retirement benefits, a range of discounted products and free services, and for formal education related to advancing your career at Apple, reimbursement for certain educational expenses — including tuition. Additionally, this role might be eligible for discretionary bonuses or commission payments as well as relocation. Learn more about Apple Benefits.

Note: Apple benefit, compensation and employee stock programs are subject to eligibility requirements and other terms of the applicable plan or program.
Apply now
Share this job
Twitter Facebook Linkedin Email