Changing the world through digital experiences is what Adobe’s all about. We give everyone from emerging artists to global brands everything they need to design and deliver exceptional digital experiences! We’re passionate about empowering people to create beautiful and powerful images, videos, and apps, and transform how companies interact with customers across every screen.
We’re on a mission to hire the very best and are committed to creating exceptional employee experiences where everyone is respected and has access to equal opportunity.
We realize that new ideas can come from everywhere in the organization, and we know the next big idea could be yours!
Information Security Risk Manager
The Adobe Cloud Engineering Security team is seeking an experienced Information SecurityRisk Managerto join our high-paced organization.
You will build genuine and long-term, positive relationships between our globally diverse product development teams and security specialists, working together to deliver world-class security solutions to our customers.
A successful candidate will have familiarity with a variety of public and private cloud technologies, application security, information security, software development standard methodologies, excellent communication skills, and a consistent track record of building customer trust.
What You'll Do :
Analyze security risks using real-world security data and systems automation.
Frequently document and communicate product security risks, collaborating with a range of stakeholders from individual contributors to senior leadership levels.
Contribute to security program development by identifying new or emerging opportunities to apply security principles and technologies.
Analyzes the security of new or existing applications, software, or specialized utility programs and provides risk recommendation.
Supporting strategic and technical initiatives, performing Operational Risk Assessments, managing Risk Acceptance activities, developing risk posture and remediation recommendations
Contribute to the production and improvement of the content, quality, and timing of security governance, risk and compliance analysis and reporting
Monitor and evaluate security measures to protect against reasonably anticipated threats or hazards to the privacy, security or integrity of protected information
Perform tasks as set forth by the information Risk Management Lead
Contribute to the design and implementation of technical security safeguard architecture
Validate, support, and improve the Application Security program, the static and dynamic scanning infrastructure, and execute governance assessments
Will identify the source of a security breach quickly and move toward containment is essential and be able to manage multiple projectson a daily basis
Conduct root cause analysis to identify gaps and recommendations ultimately remediating risks to thebusiness
Periodically reports progress to management, and assesses and measures results related to Information Security activities
What You Need to Succeed :
Outstanding organization skills, strong planning skills, communication skills, high attention to detail. Position requiresspeaking publicly toSr Leadership & Customers
Proven track record building technical rapport and enduring relationships within diverse teams.
Solidunderstanding of public cloud infrastructure and architecture (AWS, Azure, GCP)and associated security concepts and challenges.
Solid understanding of security principals, techniques, and standard methodologies such as authentication, authorization, logging, baselines, data handling, and SPLC.
Solidknowledge of application & operations securitychallengesand mitigation techniques.
Ambitious and results-oriented, with excellent interpersonal and communication skills.
Ability to multitask and switch between multiple high urgency projects.
Knowledge of emerging threats, mitigations and industry trends.
Understanding of industry standard methodologies in application & operations security.
Familiarity with compliance frameworks such as FedRAMP, ISO 27001, SOC2, HIPAA, FERPA, and PCI.