Senior Staff Security Assurance Engineer

Our Company

Changing the world through digital experiences is what Adobes all about. We give everyonefrom emerging artists to global brandseverything they need to design and deliver exceptional digital experiences! Were passionate about empowering people to create beautiful and powerful images videos and apps and transform how companies interact with customers across every screen.

Were on a mission to hire the very best and are committed to creating exceptional employee experiences where everyone is respected and has access to equal opportunity. We realize that new ideas can come from everywhere in the organization and we know the next big idea could be yours!

The Opportunity

We are a team of passionate storytellers technology innovators and change agents. Building off Adobe Express initial success we are now reimagining (from the ground up! the way people discover create and publish the full range of media types from graphics to imaging to video right in the browser and on their mobile devices. Our aim is to build fast and easy product experiences that empower students social influencers marketers small businesses really anyone with something to say to make something that will stand out and impress their audience.

The Principal Security Assurance Engineer will serve as the primary driver for ensuring strong security practices for Adobe Express and also be the primary liaison between Adobe Express teams and the broader Security organization. This role is essential for embedding robust security practices directly within the development and operational processes in our platform and applications. The role will prioritize both Adobe Express product engineering goals and the overall security goals of Adobe to align and improve the product development lifecycle.

What Youll Do

Strategic Security Leadership

• Influence product strategies and roadmaps to include vital security measures ensuring Adobe Express leads in security within Creative Cloud.

• Lead the security dialogue within the organization by participating in Product Security Alignment Meetings alongside representatives from the Security Business Operations and Enablement team and representatives from Adobe Express.

Security Integration and Advocacy

• Integrate and supervise security requirements from the inception into all stages of development from initial design through production.

• Advocate for the adoption of security best practices tools and processes ensuring that security is a core component of the product development lifecycle.

Management and Oversight

• Act as the primary point of contact for solutions involving multiple Security Champions coordinating efforts across various components and teams.

• Be responsible for the effectiveness of security practices and initiatives ensuring they are accurately implemented and yield the expected security posture improvements and tracked through associated metrics.

Risk Management

• Collaborate closely with Adobe Security team to manage security requirements and ensure these are well communicated and understood by the engineering teams.

• Handle risk assessments provide business justifications for risk adjustments and exceptions and ensure all Adobe Express products meet strict security standards.

Team Leadership and Development

• Lead and mentor Security Champions within Adobe Express fostering a culture of security awareness and continuous improvement.

• Provide strategic direction for the team helping them to prioritize security tasks and integrate them into their respective roadmaps and sprints.

• Work alongside engineering teams to advise and facilitate their threat modeling efforts.

• Identifying emerging security problems that need additional focus and contributing to building solutions to solve them especially around the AI/ML space.

What You Need To Succeed

• Masters degree in computer science engineering cybersecurity or a related field or a bachelors degree with 8 years of experience in a similar security role.

• Outstanding organization skills strong planning skills communication skills and high attention to detail. The position requires speaking publicly to senior leadership and customers.

• Proven track record building technical rapport and enduring relationships within diverse teams.

• Proficient knowledge of public cloud infrastructure and architecture (AWS Azure GCP) and associated security concepts and challenges.

• Deep familiarity of foundational security principles techniques and standard methodologies such as authentication authorization logging baselines data handling and SPLC.

• Solid knowledge of application & operations security vulnerabilities (e.g. OWASP Top 10 and mitigation techniques.

• Ambitious and driven with excellent interpersonal and communication skills.

• Ability to multitask and switch between multiple high urgency projects.

• Hangs on experience with emerging threats mitigations and industry trends.

• Experience leading projects and programs especially within the Cybersecurity domain.

• Practical experience in an engineering and software development organization and within the Secure Development Lifecycle.

• Background in Lean Enterprise/Agile/DevOps/SecDevOps development frameworks.

• Strong experience working with SaaS/cloud delivered solutions.

Application Window Notice

If this role is open to hiring in Colorado (as listed on the job posting) the application window will remain open until at least 12:01 AM Pacific Time in compliance with Colorado pay transparency regulations. If this role does not have Colorado listed as a hiring location no specific application window applies and the posting may close at any time based on hiring needs.

Our compensation reflects the cost of labor across several U.S. geographic markets and we pay differently based on those defined markets. The U.S. pay range for this positionis $174100 $334500 annually. Paywithin this range varies by work locationand may also depend on jobrelated knowledge skillsand experience. Your recruiter can share more about the specific salary range for the job location during the hiring process.

At Adobe for sales roles starting salaries are expressed as total target compensation (TTC base commission) and shortterm incentives are in the form of sales commission plans. Nonsales roles starting salaries are expressed as base salary and shortterm incentives are in the form of the Annual Incentive Plan (AIP).

In addition certain roles may be eligible for longterm incentives in the form of a new hire equity award.

Adobe will consider qualified applicants with arrest or conviction records for employment in accordance with state and local laws and fair chance ordinances.

Adobe is proud to be anEqual Employment Opportunityand affirmative action employer. We do not discriminate based on gender race or color ethnicity or national origin age disability religion sexual orientation gender identity or expression veteran status or any other applicable characteristics protected by law.Learn more.

Adobe aims to make Adobe accessible to any and all users. If you have a disability or special need that requires accommodation to navigate our website or complete the application process emailor call.

Adobe values a free and open marketplace for all employees and has policies in place to ensure that we do not enter into illegal agreements with other companies to not recruit or hire each others employees.