SAP Security Engineering (Penetration Tester), IS&T Enterprise Systems

Who you are

You are an early-career security researcher with a strong offensive security mindset — your passion for ethical hacking drives you to find vulnerabilities in complex systems. You possess a foundational understanding of enterprise systems and are eager to learn and grow in a specialized domain. Your curiosity about how systems function complements your technical skills, making you a valuable addition to our team.

You have experience or knowledge in penetration testing and vulnerability research — you understand the importance of identifying security flaws early in the development lifecycle. Your familiarity with programming languages such as ABAP and Java allows you to conduct manual penetration testing effectively. You are comfortable working with various application types, including SAP Fiori apps, web applications, APIs, and mobile interfaces.

You thrive in collaborative environments and are excited to join a spirited team of security experts — your ability to communicate findings and work alongside developers will help drive the evolution of secure development standards. You are committed to continuous learning and are eager to become a recognized expert in the field of security.

Desirable

Familiarity with security tools and techniques, such as Burp Suite or Metasploit, would be advantageous — you are open to learning new tools that enhance your testing capabilities. A basic understanding of secure coding practices and the software development lifecycle will help you contribute effectively to the team.

What you'll do

In this role, you will conduct advanced offensive security testing across Apple’s hybrid SAP landscape — your primary focus will be on manual penetration testing of custom ABAP and Java applications. You will also assess SAP Fiori apps, web applications, APIs, and mobile interfaces for vulnerabilities. Your work will involve applying cutting-edge offensive security techniques to generate meaningful data that informs secure development practices.

You will collaborate closely with development teams to shift security left — by identifying vulnerabilities early and often, you will help ensure that security is integrated into the development process. Your findings will be documented and communicated effectively to stakeholders, enabling them to understand and address security risks.

As part of a supportive team, you will participate in knowledge-sharing sessions and contribute to the development of best practices in security testing — your insights will help shape the security posture of Apple’s enterprise systems. You will also have opportunities to engage in ongoing training and professional development to enhance your skills and expertise.

What we offer

Apple provides a dynamic work environment where innovation and collaboration are encouraged — you will have the chance to work on critical projects that impact the security of our enterprise systems. We offer competitive compensation and benefits, along with opportunities for career growth and advancement within the company.

You will be part of a culture that values diversity and inclusion — we believe that a diverse team fosters creativity and innovation. We encourage you to apply even if your experience doesn't match every requirement, as we value curiosity and a growth mindset just as much as technical skills.

Join us at Apple and play a pivotal role in safeguarding our systems and protecting our customers — your contributions will have a significant impact on our global operations.