Product Security Engineer

Job Description: Product Security Engineer The Opportunity Are you passionate about product security testing and vulnerability management? Adobe Product and Software Security is seeking a dynamic candidate with strong security testing expertise to join our expanding team. In this role, you will collaborate with Engineering, Product, and Security teams to coordinate and manage product security testing, handle bug bounty reports, and publish Security Testing Reports to foster trust and transparency with Adobe’s customers. This is an exciting opportunity to contribute to innovative work that will elevate Adobe Security to new heights! What You'll Do Support the security testing program’s initiatives to ensure comprehensive testing coverage for all products and collaborate closely with engineering and product teams to define scope, schedule, and successfully complete outsourced penetration tests. Review, verify, and reproduce AI-related penetration testing and bug bounty submissions, including distinguishing genuine AI risks from false positives. Define AI testing scope for penetration testing and bug bounty programs. Drive resolution of security issues through ongoing engagement with engineering teams. Capture all relevant data and results from testing to analyze metrics and enhance the effectiveness of security assessments. Build Security Testing reports for products to provide transparency into all security testing coverage and results. Validate, reproduce, and assess the severity of bug bounty reports, and provide support to product teams on existing issues. Communicate directly with external researchers regarding bug bounty reports on reported vulnerabilities. Lead initiatives, campaigns, and analytics on vulnerability data and propose initiatives for improvement. Triage, validate, and retest security vulnerabilities, and offer mentorship for product teams regarding remediation efforts. Develop dashboards in PowerBI to support data-driven analysis and remediation efforts. What You Need to Succeed Bachelor’s degree or equivalent experience in Computer Science, Engineering, or a related field, with at least 3-5 years of practical experience. In-depth knowledge of application security vulnerabilities (OWASP Top 10) and mitigation techniques. Strong understanding of common security concepts to support root-cause analysis and enable data-driven decisions on vulnerability patterns and trends. Proficiency with JIRA and PowerBI. Experience with automation and scripting is highly desirable. Strong knowledge of LLM (Large Language Model) testing methodologies. Hands-on experience in penetration testing of AI/ML and LLM-powered products, including chat interfaces, agentic workflows, and inference APIs. Ability to develop and complete AI-specific test cases. Familiarity with attacker techniques used by external researchers against LLM systems and generative AI products. Experience conducting vulnerability assessments and using Burp Suite. Dependability: Shows dedication, works independently, accepts accountability, adapts to change, sets personal standards, and remains focused under pressure. Ability to communicate professionally and effectively. About Adobe Adobe empowers everyone to create through innovative platforms and tools that unleash creativity, productivity and personalized customer experiences. Adobe’s industry-leading offerings including Adobe Acrobat Studio, Adobe Express, Adobe Firefly, Creative Cloud, Adobe Experience Platform, Adobe Experience Manager, and GenStudio enable people and businesses to turn ideas into impact, powered by AI and driven by human ingenuity. Our 30,000+ employees worldwide are creating the future and raising the bar as we drive the next decade of growth. We’re on a mission to hire the very best and believe in creating a company culture where all employees are empowered to make an impact. At Adobe, we believe that great ideas can come from anywhere in the organization. The next big idea could be you ... (truncated, view full listing at source)