Product Security Engineer

Our Company

Changing the world through digital experiences is what Adobe’s all about. We give everyone from emerging artists to global brands everything they need to design and deliver exceptional digital experiences! We’re passionate about empowering people to create beautiful and powerful images, videos, and apps, and transform how companies interact with customers across every screen.

We’re on a mission to hire the very best and are committed to creating exceptional employee experiences where everyone is respected and has access to equal opportunity.

We realize that new ideas can come from everywhere in the organization, and we know the next big idea could be yours!

The Opportunity

Are you passionate about delivering exceptional developer experiences with a shift-left approach? Adobe's application security team leads the charter of ensuring security is prioritized during product design.

Join us to help craft the evolution of Adobe’s Threat Modeling strategy. We identify security threats at Adobe scale and enable development teams to fix them before deployment to production.

What you'll do

• Provide security expertise to developer-led threat modeling for high risk applications
• Perform technical security assessments on our web and desktop applications
• Follow secure by default concepts and integrate appropriate security controls into Adobe products
• Collaborate with product teams on custom security solutions
• Not only identify single issues but develop solutions to prevent them categorically
• Perform research in emerging areas such as AI / ML and apply concepts to the security domain
• Seek out opportunities to automate where appropriate
• Contribute code and security expertise to Adobe's next generation Threat Modeling capability

What you need to succeed

• Bachelor's Degree and 5+ years of experience in Application or Product Security
• Background in software engineering or development in a collaborative environment
• 3+ years of demonstrated ability using Python, C, C++, or Java
• Deep understanding of application architectures and design principles
• Experience with Threat Modeling applications using STRIDE or a similar framework
• Knowledge of common security flaws and mitigations as published by OWASP, SANS, etc.
• Knowledge of authentication mechanisms like SAML, OAuth, etc.
• Knowledge of building resilient, highly available systems
• Demonstrated ability to evaluate the security of a system, see patterns, and investigate complex issues
• Ability to make data driven, risk based decisions
• A results-oriented mindset with excellent interpersonal and communication skills
• Deep empathy for our customers including internal developers
• Passion about enabling our developers to deliver new features securely

Our compensation reflects the cost of labor across several geographic markets, and we pay differently based on those defined markets.

The pay range for this position is $130,900 $244,300 annually. Pay within this range varies by work location and may also depend on job-related knowledge, skills, and experience.

Your recruiter can share more about the specific salary range for the job location during the hiring process.

At Adobe, for sales roles starting salaries are expressed as total target compensation (TTC base + commission), and short-term incentives are in the form of sales commission plans.

Non-sales roles starting salaries are expressed as base salary and short-term incentives are in the form of the Annual Incentive Plan (AIP).

In addition, certain roles may be eligible for long-term incentives in the form of a new hire equity award.