Senior Security Lead (UK/Europe)

Apple
London, UK,
£73,857 per year - estimated ?

The ideal candidate is a senior security practitioner first and foremost, motivated to continually make our security controls and processes stronger. They are interested in getting into the details, and can work independently to performing due diligence, and create high-quality deliverables. Importantly, this individual has experience presenting on security risk and compliance matters to senior executives/boards and is both prepared and confident fielding Q&A.

• Regulatory Interpretation: Partner with our Legal and Compliance teams to understand and apply complex EU regulatory requirements and translate them into actionable policies and procedures.
• Risk Assessment & Remediation: Conduct risk assessments and gap analyses to identify areas of non-compliance, and develop and implement effective remediation plans.
• Compliance Management: Manage security, compliance, and governance documentation, and audit processes.
• Training & Awareness: Develop and deliver training and awareness programs to employees on security compliance topics.
• Board Communication: Serve as a primary point of contact for the Apple Distribution International board on security and compliance matters, providing clear and concise updates.
• Regulatory Monitoring: Monitor the evolving UK/EU regulatory landscape and proactively adapt compliance strategies.
• External Liaison: Liaise with external auditors and regulatory bodies.
• Streamline Processes: Streamline compliance processes to improve operational efficiency and reduce the burden on other teams.

• Extensive experience in security, compliance, privacy, or a related field.
• Ability to advise and speak on technical security architectures, best practices, and processes.
• Deep understanding of EU regulations, including DORA, NIS2, CRA, GDPR, the Digital Services Act, and the AI Act.
• Excellent communication, presentation, and interpersonal skills.

• Strategic Security Leadership: Expertise in architecting and overseeing security controls across diverse technology stacks, including applications, infrastructure, cloud platforms, networks, databases, and AI/ML systems.
• Technical Acumen: Familiarity with scripting and data query languages (e.g., Python, SQL) for security automation and analysis.
• Project Leadership: Demonstrated ability to lead and deliver complex security projects end-to-end, ensuring quality and timely execution, both independently and collaboratively.
• Proactive & Adaptive: Highly proactive, curious, and adaptable, thriving in dynamic and ambiguous environments while consistently seeking innovative security solutions.
• Collaborative & Influential: Fosters strong cross-functional partnerships, with strategic foresight to anticipate emerging security risks and proactively engage stakeholders to develop mitigation strategies.
• Ability to build positive relationships with stakeholders at all levels.
• Experience working with boards of directors.
• Exceptional Communication: Superior communication skills, with the ability to articulate complex technical security concepts to diverse audiences, from technical teams to executive leadership.