You will combine hands-on technical leadership with people management, overseeing programs that include subcomponents of Apple's bug bounty program, proactive vulnerability discovery, WAF rule ...
You will combine hands-on technical leadership with people management, overseeing programs that include subcomponents of Apple's bug bounty program, proactive vulnerability discovery, WAF rule ...
You will combine hands-on technical leadership with people management, overseeing programs that include subcomponents of Apple's bug bounty program, proactive vulnerability discovery, WAF rule ...
You will combine hands-on technical leadership with people management, overseeing programs that include subcomponents of Apple's bug bounty program, proactive vulnerability discovery, WAF rule ...
You will combine hands-on technical leadership with people management, overseeing programs that include subcomponents of Apple's bug bounty program, proactive vulnerability discovery, WAF rule ...
You will combine hands-on technical leadership with people management, overseeing programs that include subcomponents of Apple's bug bounty program, proactive vulnerability discovery, WAF rule ...
You will combine hands-on technical leadership with people management, overseeing programs that include subcomponents of Apple's bug bounty program, proactive vulnerability discovery, WAF rule ...
You will combine hands-on technical leadership with people management, overseeing programs that include subcomponents of Apple's bug bounty program, proactive vulnerability discovery, WAF rule ...
Senior Cybersecurity Engineer
Houston, TX · On-site
$105K - $145K/yr
Provide application security guidance and support the bug bounty and responsible disclosure program, including vulnerability triage and researcher communications. * Evaluate AI-powered tools and ...
Senior Cybersecurity Engineer
Houston, TX · On-site
$105K - $145K/yr
Provide application security guidance and support the bug bounty and responsible disclosure program, including vulnerability triage and researcher communications. * Evaluate AI-powered tools and ...
Senior Cybersecurity Engineer
$109K - $149K/yr
Provide application security guidance and support the bug bounty and responsible disclosure program, including vulnerability triage and researcher communications. * Evaluate AI-powered tools and ...
Senior Cybersecurity Engineer
$109K - $149K/yr
Provide application security guidance and support the bug bounty and responsible disclosure program, including vulnerability triage and researcher communications. * Evaluate AI-powered tools and ...
... and bug bounty programs help organizations reduce business risk. * Partner cross-functionally with Account Executives and Marketing to execute coordinated account-based prospecting strategies ...
... and bug bounty programs help organizations reduce business risk. * Partner cross-functionally with Account Executives and Marketing to execute coordinated account-based prospecting strategies ...
Personal Systems Security Response Senior Manager
Spring, TX · On-site
$147K - $230K/yr
Leadership and management of bug bounty program * Pan-HP contribution to security response standards and initiatives * Established/maintain closed-loop feedback mechanisms with Sales, Support, and ...
Personal Systems Security Response Senior Manager
Spring, TX · On-site
$147K - $230K/yr
Leadership and management of bug bounty program * Pan-HP contribution to security response standards and initiatives * Established/maintain closed-loop feedback mechanisms with Sales, Support, and ...
Personal Systems Security Response Senior Manager
$147K - $230K/yr
Leadership and management of bug bounty program * Pan-HP contribution to security response standards and initiatives * Established/maintain closed-loop feedback mechanisms with Sales, Support, and ...
Personal Systems Security Response Senior Manager
$147K - $230K/yr
Leadership and management of bug bounty program * Pan-HP contribution to security response standards and initiatives * Established/maintain closed-loop feedback mechanisms with Sales, Support, and ...
Product Security Analyst
Austin, TX · On-site
You will play a critical role in validating, reproducing, and communicating security findings across bug bounty and vulnerability disclosure programs while helping maintain a high-quality experience ...
Product Security Analyst
Austin, TX · On-site
You will play a critical role in validating, reproducing, and communicating security findings across bug bounty and vulnerability disclosure programs while helping maintain a high-quality experience ...
EASM Validation Analyst
Dallas, TX · On-site
Knowledge of VDP or bug bounty programs and triage methodologies * Strong analytical and problem-solving skills Preferred Qualifications * Experience with scripting (Python, PowerShell, Bash)
EASM Validation Analyst
Dallas, TX · On-site
Knowledge of VDP or bug bounty programs and triage methodologies * Strong analytical and problem-solving skills Preferred Qualifications * Experience with scripting (Python, PowerShell, Bash)
... Bug bounty or coordinated disclosure experience - Assembly-level analysis and low-level debugging ... Other rewards may include short- and long-term incentives as well as program-specific awards.
... Bug bounty or coordinated disclosure experience - Assembly-level analysis and low-level debugging ... Other rewards may include short- and long-term incentives as well as program-specific awards.
... Program and Bug Bounty programs What are we looking for? We are seeking collaborative professionals who enjoy handson technical work and take pride in delivering a highquality internal client ...
... Program and Bug Bounty programs What are we looking for? We are seeking collaborative professionals who enjoy handson technical work and take pride in delivering a highquality internal client ...
... Bug bounty or coordinated disclosure experience - Assembly-level analysis and low-level debugging ... Other rewards may include short- and long-term incentives as well as program-specific awards.
... Bug bounty or coordinated disclosure experience - Assembly-level analysis and low-level debugging ... Other rewards may include short- and long-term incentives as well as program-specific awards.
Senior Director, Community
Austin, TX · On-site
Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming ... Demonstrate First Principles Problem Solving by evaluating community programs, researcher ...
Senior Director, Community
Austin, TX · On-site
Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming ... Demonstrate First Principles Problem Solving by evaluating community programs, researcher ...
Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming ... Drive company-wide talent programs including performance management, succession planning, talent ...
Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming ... Drive company-wide talent programs including performance management, succession planning, talent ...
Product Marketing Manager
Austin, TX · On-site
$152K/yr
Exposure to penetration testing, bug bounty programs, or the security research community * Experience with competitive intelligence tools and frameworks Compensation Bands: Tier Guide Tier B: $121 ...
Product Marketing Manager
Austin, TX · On-site
$152K/yr
Exposure to penetration testing, bug bounty programs, or the security research community * Experience with competitive intelligence tools and frameworks Compensation Bands: Tier Guide Tier B: $121 ...
Senior Engineer, Offensive Security
Dallas, TX · On-site
$113K - $155K/yr
And it's a rare chance to do that hands-on inside a program that helps protect the health data of ... validation, or Bug Bounty, with a track record of delivering engagements end to end: scoping ...
Senior Engineer, Offensive Security
Dallas, TX · On-site
$113K - $155K/yr
And it's a rare chance to do that hands-on inside a program that helps protect the health data of ... validation, or Bug Bounty, with a track record of delivering engagements end to end: scoping ...
Senior Engineer, Offensive Security
$113K - $155K/yr
And it's a rare chance to do that hands-on inside a program that helps protect the health data of ... validation, or Bug Bounty, with a track record of delivering engagements end to end: scoping ...
Senior Engineer, Offensive Security
$113K - $155K/yr
And it's a rare chance to do that hands-on inside a program that helps protect the health data of ... validation, or Bug Bounty, with a track record of delivering engagements end to end: scoping ...
Senior Engineer, Offensive Security
Dallas, TX · On-site
$113K - $155K/yr
And it's a rare chance to do that hands-on inside a program that helps protect the health data of ... validation, or Bug Bounty, with a track record of delivering engagements end to end: scoping ...
Senior Engineer, Offensive Security
Dallas, TX · On-site
$113K - $155K/yr
And it's a rare chance to do that hands-on inside a program that helps protect the health data of ... validation, or Bug Bounty, with a track record of delivering engagements end to end: scoping ...
Bug Bounty Program information
What are some common challenges faced by professionals managing a Bug Bounty Program?
What are the key skills and qualifications needed to thrive as a Bug Bounty Program participant, and why are they important?
What is a Bug Bounty Program?
What is the difference between Bug Bounty Program vs Penetration Tester?
| Aspect | Bug Bounty Program | Penetration Tester |
|---|---|---|
| Credentials | Knowledge of security vulnerabilities, bug reporting skills | Certifications like OSCP, CEH, CISSP often preferred |
| Work Environment | Remote, project-based, crowdsourced | Consulting firms, in-house teams, on-site or remote |
| Industry Usage | Tech companies, startups, open security initiatives | Security firms, corporate security teams, government agencies |
| Search/Comparison Intent | Understanding crowdsourced bug finding vs professional testing | Comparing freelance or company-based security assessments |
The main difference is that Bug Bounty Programs are crowdsourced initiatives where individuals report vulnerabilities remotely, often without formal certifications. Penetration Testers are professionals with certifications who perform targeted security assessments, usually in a consulting or in-house setting. Both roles focus on identifying security flaws but differ in structure, credentials, and work environment.

Full-time
Re-posted 15 days ago
Apple rating
8.1
Based on 670 frontline employees who took The Breakroom Quiz
5th of 30 rated technology retailers
Job description
tooling.
You will play a critical role in protecting Apple's services and customers by ensuring timely and thorough response to security risks, fostering engineering excellence, and driving strategic initiatives that strengthen Apple's overall security posture. This role is both strategic and operational, requiring deep technical expertise, strong leadership, and the ability to manage a geographically distributed team operating in a continuous response environment.
Description
As a manager on the Vulnerability Response team, you will lead the day-to-day operations of security engineers across the US and EMEIA regions, as well as oversee resources providing around-the-clock support. You will set team priorities, drive execution across multiple concurrent programs, and ensure operational continuity for a function that requires uninterrupted coverage. This includes direct participation in on-call escalation rotations, hands-on technical contributions such as penetration testing, variant analysis, security tool development, and strategic planning to evolve the team's capabilities over time.
You will partner closely with teams across Apple to ensure coordinated and effective vulnerability response. You will represent the team in cross-functional forums, advocate for security improvements with engineering leadership, and contribute to the development of policies, processes, and tooling that scale the team's impact. You will also maintain the professional standards and reputation through oversight of researcher engagement,
vulnerability adjudication, and program communications.
Minimum Qualifications
8+ years of experience in information security, with demonstrated expertise in vulnerability management, web application penetration testing, and incident response for large-scale internet-facing services, including 3+ years of people management experience leading and developing teams of security engineers.
Strong technical proficiency in web application security, including hands-on experience identifying and remediating common vulnerability classes, and software development skills in one or more of Python, Go, or Bash.
Experience managing or contributing to a vulnerability disclosure or bug bounty program, including researcher engagement, vulnerability validation, and coordinated disclosure processes.
Experience with vulnerability scanning tools and methodologies at enterprise scale, including both commercial and open-source solutions.
Demonstrated ability to manage geographically distributed teams across multiple time zones, with willingness to participate in on-call rotations, including weekends, as part of a tiered escalation model.
Excellent written and verbal communication skills, with the ability to articulate complex security issues and risk to both technical and non-technical audiences.
Preferred Qualifications
Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent professional experience.
Experience with cloud-native architectures, WAF technologies, and DNS security disciplines, with the ability to assess security implications across modern deployment and infrastructure environments.
Background in applying AI and machine learning techniques to security operations, including automated analysis, classification, or remediation workflows.
Relevant industry certifications such as CISSP, OSCP, OSCE, GPEN, or equivalent are helpful but not required.
About Apple
Sourced by ZipRecruiter
Imagine what you could do here! At Apple, new ideas have a way of becoming extraordinary products, services, and customer experiences very quickly. Bring passion and dedication to your job and there's no telling what you could accomplish. Dynamic, intelligent people and inspiring, innovative technologies are the norm here. The people who work here have reinvented entire industries with all Apple Hardware products. The same real passion for innovation that goes into our products also applies to our practices strengthening our dedication to leave the world better than we found it.
Industry
Computer and electronic product manufacturing
Company size
10,000+ Employees
Headquarters location
Cupertino, CA, US
Year founded
1976