×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Senior Engineering Manager : Access Management, Authorization & Identity Governance

Job in Sunnyvale, Santa Clara County, California, 94087, USA
Listing for: Apple
Full Time position
Listed on 2026-03-11
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 228100 - 342800 USD Yearly USD 228100.00 342800.00 YEAR
Job Description & How to Apply Below

Summary

Get ready to do something great when you join the Apple Identity Management team that’s responsible for all of Apple’s identity and access management. The people who work here have re‑invented and defined the security standards for protecting customer data with innovative software solutions. The same dedication to innovation is also applied to our business practices – leaving the world a more secure place than we found it.

Do you want to help deliver the next innovation in security and user experience for Apple?

Our teams foster a collaborative environment with creative, smart & fun people using state‑of‑the‑art technologies. Come and join us in building solutions that have a worldwide impact.

Description

We are seeking an exceptional Senior Engineering Manager with deep expertise in Access Management, Authorization and Identity Governance specifically focused on authorization frameworks and access control models. This is a highly technical leadership role requiring someone who can both architect strategic solutions and actively contribute to hands‑on implementation using Java & Spring Framework.

The candidate should demonstrate the ability to continuously raise the performance bar for self and team while serving as a strong change leader who drives positive organizational and technical transformation. Proven track record of building highly scalable, resilient platforms with strong customer obsession, proactive production monitoring, and uncompromising quality.

The candidate should bring an innovative, out‑of‑the‑box mindset to solve complex enterprise challenges and deep AI expertise to modernize engineering processes and architect AI‑native solutions (agents, MCPs) across hybrid SaaS, cloud, and custom enterprise ecosystems.

Responsibilities
  • Develop and execute a comprehensive Access Management and Governance strategy centered on authorization, access control models (RBAC, PBAC, ABAC, ReBAC), and policy enforcement
  • Lead the design, implementation, and optimization of identity governance platforms and authorization solutions with hands‑on contributions to architecture, coding, and database schema design
  • Design and implement authorization flows using OAuth 2.0, OpenID Connect, and policy decision frameworks (OPA, XACML, Cedar)
  • Ensure compliance with regulatory requirements (GDPR, CCPA, SOX, HIPAA, PCI‑DSS) through robust access controls
  • Evaluate and integrate AI/ML capabilities for intelligent access decisions and policy recommendations
  • Build, lead, and mentor a high‑performing engineering team fostering technical excellence and continuous improvement
Minimum Qualifications
  • Minimum of 10 years in Identity and Access Management domains, with at least 5 years in engineering leadership roles
  • Expert‑level programming skills in Java and Spring Framework (required) with ability to contribute to production code
  • Deep expertise in data modeling, database schema design, and relational database design for identity and access management systems
  • Strong expertise in implementing and optimizing RBAC, PBAC, ABAC, and ReBAC (Relationship‑Based Access Control) models
  • Hands‑on experience with OAuth 2.0, OpenID Connect, and policy engines (OPA, XACML, Cedar)
  • Demonstrated ability to lead technical teams and deliver complex projects on time
  • Excellent communication skills to convey technical concepts to business and executive stakeholders
Preferred Qualifications
  • Experience with cloud‑based identity solutions (AWS IAM, Azure AD PIM, GCP IAM, Okta) and multi‑cloud governance
  • Experience applying AI/ML for intelligent access decisions, anomaly detection, and behavioral analytics
  • Understanding of zero‑trust architecture, continuous authorization, and Dev Sec Ops  practices
  • Knowledge of containerization (Docker, Kubernetes) authorization models and API gateway security
Pay & Benefits

At Apple, base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay range for this role is between $228,100 and $342,800, and your base pay will depend on your skills, qualifications, experience, and location.

Apple employees also…

Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search