Sr Product Security Engineer

As a Senior Security Engineer specializing in Identity Architecture & Solutions, you will craft, build, and operationalize scalable identity and SaaS security capabilities across the enterprise. This role is a technical leader within the Enterprise Security organization, and they should be passionate about Identity & SaaS Security functions and identity architecture strategy. As an organization, we collaborate on driving measurable reductions of identity-centric risk.

This role is critical to delivering on that vision.

• Engineer Zero Trust access controls across workforce and service identities: implement pipelines using RBAC+ABAC standards, device and posture checks, and riskadaptive policies for critical services and high-risk scenarios.
• Harden privileged access: migrate administrators to rightsize entitlements and eliminate longlived elevated access across prioritized platforms (e.g., Entra , Privileged Access Management).
• Stand up SaaS security posture monitoring: participate in tool POCs and deployments; define baselines for M365/Slack/Git Hub/Workday/Google; build remediation runbooks and posture success measurements.
• Instrument identity metrics collection and tracking: standardize log schemas for authentication (AuthN)/authorization (AuthZ) and entitlement changes; publish dashboards for privilege drift, misconfigurations, and access sprawl; coordinate risky events to security alert procedures.
• Contribute and drive architecture & standards: author implementation guides and reference architecture that supports a multiyear strategy passionate about measuring risk reduction over time. Inclusive of new technologies and risks.

• Depth of experience with enterprise identity controls and solutions, including delivering outcomes that use Entra /AD, Okta, and SailPoint (or equivalents)
• Strong understanding of core Zero Trust principles, the least privilege and continuous verification models, and Identity governance and administration (IGA)
• SaaS posture skills for securing large SaaS tenants (M365, Slack, Git Hub, Workday, Google), including security Authn and Authz for all identities accessing SaaS tenants
• Influence & collaboration with key partners in IT and other security teams and organizations
• Excellent written and verbal communication skills, including communicating complex problems and solutions to business leaders and technical specialists

• Engineering experience with secure access control solutions (e.g. Teleport, Vault), secrets management, and CI/CD solutions and their customers.
• Scripting/automation knowledge (e.g., Python, Power Shell) and infrastructureascode (e.g., Terraform) for policy and pipeline automation.
• Exposure to service identity frameworks (e.g., SPIFFE/SPIRE) and workload identity patterns.
• Experience/Education requirements ~10+ years relevant experience;
  Bachelor's required, Masters preferred or equivalent experience.
• Technical lead experience in enterprise environments

Adobe is proud to be an Equal Employment Opportunity employer. We do not discriminate based on gender, race or color, ethnicity or national origin, age, disability, religion, sexual orientation, gender identity or expression, veteran status or any other protected characteristic. Learn more.