Opportunity:
Lead Adobe’s Security Risk and Governance program by advancing the security risk strategy through qualitative and quantitative analysis. Improve decision-making using security insights, data analytics, and modeling to validate the organization’s risk landscape. Manage Adobe’s Security Management framework, integrate industry-leading risk measurement models, and provide senior leadership with actionable insights. Drive the Security Policy & Procedures framework and transform the PSOP program to align technical risks with business outcomes.
The Challenge:
- Transform the security risk program with qualitative and quantitative insights, using AI, data analytics, and financial analysis.
- Maintain and enhance Adobe’s security risk framework, ensuring accurate risk capture, prioritization, and compliance with regulatory changes.
- Lead the Security Governance and Policy program, aligning policies and standards with input from Security Architecture, Adobe CCF, Cyber Operations, and Product Security.
- Apply industry risk frameworks (e.g., FAIR, OCTAVE, NIST RMF, ISO 27005) to governance processes and quantify risks in financial terms to support executive decision-making.
- Develop dashboards and BI tools to visualize risk metrics for technical and non-technical partners.
- Manage and mentor a high-performing risk and governance team, fostering collaboration and growth.
- Optimize GRC platforms (e.g., ServiceNow IRM, Archer, Vanta, Drata) and integrate them with enterprise tools.
- Prepare business-focused reports and presentations for senior leadership, bridging technical details with strategic insights.
What is needed to succeed:
- 10+ years of experience in Security Risk Management
- 3-5 years of experience managing high-performing teams.
- Expertise in security risk management models (e.g., FAIR, OCTAVE, NIST RMF, ISO 27005) and regulatory frameworks.
- Proficiency in threat modeling, data analytics, AI/ML, and automation tools for risk analysis.
- Strong knowledge of security concepts, tools, industry trends, and vulnerabilities.
- Experience with complex security policies and standards (e.g., Cloud Architecture, Vulnerability Management).
- Comfortable leading the Policy Governance function and has indepth understanding and knowledge working with complex security policies and standards (e.g. Cloud Architecture, Vulnerability Management etc.)
- Led Compliance with Audit Frameworks (e.g. SOC2, ISO 27001, NIST 800-53 etc.)
- Relevant certifications such as CISSP, CISM, CISA, CRISC
About Adobe
Adobe empowers everyone to create through innovative platforms and tools that unleash creativity, productivity and personalized customer experiences. Adobe’s industry-leading offerings including Adobe Acrobat Studio, Adobe Express, Adobe Firefly, Creative Cloud, Adobe Experience Platform, Adobe Experience Manager, and GenStudio enable people and businesses to turn ideas into impact, powered by AI and driven by human ingenuity.
Our 30,000+ employees worldwide are creating the future and raising the bar as we drive the next decade of growth. We’re on a mission to hire the very best and believe in creating a company culture where all employees are empowered to make an impact. At Adobe, we believe that great ideas can come from anywhere in the organization. The next big idea could be yours.
** Let’s Adobe together**
At Adobe, we believe in creating a company culture where all employees are empowered to make an impact. Learn more about Adobe life, including our values and culture, focus on people, purpose and community, Adobe for All, comprehensive benefits programs, the stories we tell, the customers we serve, and how you can help us advance our mission of empowering everyone to create.
Adobe is proud to be an Equal Employment Opportunity employer. We do not discriminate based on gender, race or color, ethnicity or national origin, age, disability, religion, sexual orientation, gender identity or expression, veteran status, or any other protected characteristic. Learn more.
Adobe aims to make our Careers website and recruiting process accessible to any and all users. If you have a disability or special need that requires accommodation to navigate our website or complete the application process, email accommodations@adobe.com or call +1 408-536-3015.
AI Use Guidelines for Interviews: Our interviews are designed to reflect your own skills and thinking. The use of AI or recording tools during live interviews is not permitted unless explicitly invited by the interviewer or approved in advance as part of a reasonable accommodation. If these tools are used inappropriately or in a way that misrepresents your work, your application may not move forward in the process.
At Adobe, we empower employees to innovate with AI — and we look for candidates eager to do the same. As part of the hiring experience, we provide clear guidance on where AI is encouraged during the process and where it’s restricted during live interviews. See how we think about AI in the hiring experience.
Expected Pay Range:
Our compensation reflects the cost of labor across several U.S. geographic markets, and we pay differently based on those defined markets. The U.S. pay range for this position is $122,600 -- $263,700 annually. Pay within this range varies by work location and may also depend on job-related knowledge, skills, and experience. Your recruiter can share more about the specific salary range for the job location during the hiring process.
In California, the pay range for this position is $182,100 - $263,700 In New York, the pay range for this position is $182,100 - $263,700 In Washington, the pay range for this position is $163,200 - $236,400
At Adobe, for sales roles starting salaries are expressed as total target compensation (TTC = base + commission), and short-term incentives are in the form of sales commission plans. Non-sales roles starting salaries are expressed as base salary and short-term incentives are in the form of the Annual Incentive Plan (AIP).
In addition, certain roles may be eligible for long-term incentives in the form of a new hire equity award.
State-Specific Notices:
California:
Fair Chance Ordinances
Adobe will consider qualified applicants with arrest or conviction records for employment in accordance with state and local laws and “fair chance” ordinances.
Colorado:
Application Window Notice
If this role is open to hiring in Colorado (as listed on the job posting), the application window will remain open until at least the date and time stated above in Pacific Time, in compliance with Colorado pay transparency regulations. If this role does not have Colorado listed as a hiring location, no specific application window applies, and the posting may close at any time based on hiring needs.
Massachusetts:
Massachusetts Legal Notice
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.