Offensive Security

il y a 1 jour

Paris, Île-de-France Apple Temps plein

As part of Apple's Security Engineering & Architecture (SEAR) organization, you'll join our mission to create the world's most secure products. We are committed to building groundbreaking tools that enable our security researchers to delve deep into our numerous codebases and frameworks to identify any security concerns efficiently.

We are seeking a motivated individual to explore and improve our offensive security capabilities with a strong emphasis on designing and developing state-of-the-art tools using a broad range of analysis approaches.

Description

You will collaborate closely with an extraordinary team of vulnerability researchers to gain a deep understanding of the attack surface across Apple's full stack - from silicon and boot ROMs to firmware, kernels, and user applications.

As the primary focus, you will design, develop, maintain, and enhance our security analysis tools. Using a wide range of static and dynamic techniques on both source code and binaries, you will create and contribute to innovative solutions for very targeted issues, and scalable solutions to efficiently analyze sophisticated systems. Your work will directly amplify the team's impact on variant analysis or regression prevention, and will empower researchers with ground breaking methods and automation for streamlined vulnerability finding.

You will also partner directly with researchers to apply offensive tooling to real-world security assessments. This hands-on application will demonstrate tools effectiveness and provide valuable feedback for continuous improvement. Your contributions will directly impact our ability to proactively secure Apple products.

Preferred Qualifications

Experience with reverse engineering tools and methodologies.

Experience with DevOps and related environments.

Low-level understanding of security mitigations deployed in at least one major operating system.

Note: Preference for in office, in Paris. However, we will consider strong talent in a remote capacity.

Minimum Qualifications

Strong programming skills (C/C++, Python, Swift/Rust).

Proven experience in security-oriented tool development, extension and real-world usage (static/dynamic approaches, source/binary analysis).

Autonomous drive and collaborative approach.

At Apple, we're not all the same. And that's our greatest strength. We draw on the differences in who we are, what we've experienced, and how we think. Because to create products that serve everyone, we believe in including everyone. Therefore, we are committed to treating all applicants fairly and equally. We will work with applicants to make any reasonable accommodations.

  • Offensive Security

    il y a 2 jours

    Paris, Île-de-France Apple Temps plein

    Apple's Security Engineering & Architecture team (SEAR) focus on security needs. Passionate about safeguarding, we believe the best defense is a good offense. When it comes to securing more than a billion devices running the world's most sophisticated operating systems, that means finding vulnerabilities first. Can you make a difference on this scale? Join...

  • Offensive Security Internship

    il y a 1 semaine

    Paris, Île-de-France Apple Temps plein

    Apple is seeking a motivated student for the position of Microarchitecture Security Intern. The team pursues research & development in the areas of microarchitectural attacks with particular focus on cache side-channels, transient execution vulnerabilities and fault injections. As a member of the team, you will work on finding microarchitectural side-channel...

  • Offensive Security Internship

    il y a 2 semaines

    Paris, Île-de-France Apple Temps plein

    Apple System-on-Chips (SoCs) implement multiple security mechanisms to ensure platform integrity against a broad spectrum of threats, including hardware fault attacks. These attacks are sophisticated techniques where adversaries intentionally introduce physical disturbances to disrupt normal processor operation, causing exploitable errors that can reveal...

  • STAGE – Consultant Sécurité offensive h/f

    il y a 1 semaine

    Paris, Île-de-France HeadMind Partners Temps plein

    Paris - Stage fin d'étudesDéveloppez une expertise sécurité technique de pointeVos MissionsL'équipe « Audit 360 » évalue le niveau de résistance à une attaque de nos clients au travers d'approches offensives (tests d'intrusion, red team) ou d'audits plus classiques (audit de configuration, d'architecture, audit de code). En rejoignant cette équipe...

  • Cybersecurity Researcher

    il y a 1 semaine

    Paris, Île-de-France Symbiotic Security Temps plein

    What We Are Looking ForWe are looking for aCybersecurity Researcher with a strong defensive mindset. Your primary mission will be todesign, validate, and improve practical protectionsthat help developers avoid introducing vulnerabilities, including those generated by AI coding assistants.You will still conduct offensive research (discover new vulnerability...

  • Consultant(e) & Manager Red Team / Pentest – Cybersécurité

    il y a 1 semaine

    Paris, Île-de-France She's IT Temps plein

    𝐂𝐨𝐧𝐬𝐮𝐥𝐭𝐚𝐧𝐭(𝐞) & 𝐌𝐚𝐧𝐚𝐠𝐞𝐫 𝐑𝐞𝐝 𝐓𝐞𝐚𝐦 / 𝐏𝐞𝐧𝐭𝐞𝐬𝐭 – 𝐂𝐲𝐛𝐞𝐫𝐬𝐞́𝐜𝐮𝐫𝐢𝐭𝐞́Paris2 jours de télétravail/semaineRémunération : selon profil | CDILe poste en 2 motsJe recrute plusieurs profils Red Team / Pentest?Consultants confirmés...

  • Hardware Security Researcher

    il y a 1 semaine

    Paris, Île-de-France Ledger Temps plein

    About LedgerWe're a team of experts pushing the limits of what's possible, united by our common goal to unlock true freedom through digital ownership, making technology accessible for all. We believe in a world where users, creators and enterprises manage their value with ownership and freedom. Our curiosity drives us to innovate, empowering individuals on a...

  • Cybersecurity Researcher

    il y a 2 heures

    Paris, Île-de-France Symbiotic Security Temps plein

    What We Are Looking ForWe are looking for a creative Cybersecurity Researcher who can both find real-world vulnerabilities in public code and designer practical protections. You'll build PoCs (AST & LLM-based), hunt risky patterns in public repos, write clear blog posts, and help craft our CTF platform for conferences like DEFCON. If you love offensive...

  • Security Incident Response Expert

    il y a 1 semaine

    Paris, Île-de-France PERENNIS CONSULTING PRO&BEAUTY Temps plein

    Missions principales** - Mener des activités de **Digital Forensics et de réponse aux incidents (DFIR)**, incluant l'évaluation, l'analyse, la catégorisation, la classification et l'investigation des incidents de cybersécurité. - Gérer les incidents de cybersécurité afin d'assurer leur **confinement rapide** et la **réduction des risques**, en...

  • Stage de fin d'études

    il y a 2 semaines

    Paris, Île-de-France Sia Temps plein

    Description de l'entreprise Sia est un groupe international de conseil en management de nouvelle génération, fondé en 1999. Nés à l'ère du digital, nous sommes augmentés par la data, enrichis par la créativité et guidés par la responsabilité. Nous collaborons avec nos clients pour relever les défis et saisir les opportunités. Dans un monde en...