Do you want to help build the foundation of some of the world's most important software security systems? Do you think finding architectural security issues is a challenge worthy of you? Do you feel motivated when finding a new, high-impact, exploit? The Adobe Secure Software Engineering Team is looking for someone with extraordinary security skills who is an expert in how to find, fix, and prevent vulnerabilities in our software and operational environments. The Adobe Secure Software Engineering Team is a dynamic, high-profile team involved in the development of every Adobe product, so this is a great opportunity to make a difference at a software company.
Guide teams on adoption and execution of a Secure Product Life Cycle
Lead implementation of threat models, secure software test plans, policy, and procedures for product engineering, CloudOps and DevOps teams.
Communicate security information to users and customers through blogs, white papers, and/or conference presentations.
Educate product teams on security best practices by providing real-world examples and hands on training.
Find and fix security and privacy flaws across the Adobe product line and infrastructure.
Develop tools to automate security testing and enable more efficient discovery and resolution of security problems.
Conduct code reviews of products built in C/C++, Python, Ruby, Go and Java.
Respond to cloud operations security incidents.
Help design security-related functionality and verify proper implementation of new features.
Maintain awareness of up-to-date threat and vulnerability profiles.
Apply deep knowledge of application attack vectors and mitigation techniques.
Speak fluently around cryptography and potential attacks.
Apply real world security industry threats to company products.
Conduct internal security training classes for management and engineering and operations teams.
Develop and organize training manuals, multimedia visual aids, and other educational materials.
Bachelor's degree in computer science, engineering or a related discipline.
5-8 years of experience working with security, or an equivalent combination of education and work experience;
Deep knowledge of cloud computing stacks: SaaS, PaaS, IaaS
Familiarity with browser and operating system security concepts;
Advanced knowledge of public cloud services platforms including Amazon Web Services (AWS) and Microsoft Azure, with a security mindset.
Thorough understanding of networking concepts and Internet protocols.
Solid background in Linux and Windows
Good analytical ability;
Strong written and oral skills in English; (will occasionally interface with senior management)
The ideal candidate must be able to convey complex security issues and risks while maintaining a positive relationship with product teams
Minimal travel required
Nice to have:
Experience with SIEM products like Splunk ES
Knowledge of container solutions like Docker and orchestration frameworks like Apache Mesos, Google Kubernetes
Experience with regulatory compliance audits such as PCI DSS, SOC 2, and HIPAA.
At Adobe, you will be immersed in an exceptional work environment that is recognized throughout the world on Best Companies lists. You will also be surrounded by colleagues who are committed to helping each other grow through our unique Check-In approach where ongoing feedback flows freely.
If you're looking to make an impact, Adobe's the place for you. Discover what our employees are saying about their career experiences on the Adobe Life blog and explore the meaningful benefits we offer.
Adobe is an equal opportunity employer. We welcome and encourage diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability or veteran status.
Adobe Systems Incorporated