Paid Advertising is
ha.ckers sla.cking
Ever wanted to work as a "chief hacker" "security evangelist"? This is a place to post jobs or ask for work. Over time as I hear about job offers, we can consolidate them into this board. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Adobe looking for a Sr. Security Researcher
Posted by: kimhoffman
Date: March 16, 2007 02:10PM

The Adobe Secure Software Engineering Team is looking for someone with extraordinary programming and security skills who is an expert in how to find and fix vulnerabilities in our software. This position is in a dynamic, high-profile team involved in the development of every Adobe product, so this is a great opportunity to make a difference at a software company.

Adobe delivers some of the most compelling consumer and productivity software products in the world. From Flash and Acrobat to Photoshop to Dreamweaver these products are pushing the Engagement Platform forward. Adobe is looking for a Senior Security Researcher to help guide the efforts of these teams and our core technologies.

Senior Security Researchers are responsible for ensuring application of Secure Software Engineering principles and processes during development of Adobe products. As a trusted partner to engineering management, they provide specialized technical assistance and independent guidance on issues affecting security of Adobe products.


•Lead implementation of secure software test plans, control techniques, policy and procedures for product engineering and QE.
•Identify shortcomings in existing development processes and implement process improvements.
•Educate product teams on security practices by personal example and hands on training.
•Communicate security information to users and customers through whitepapers and/or conference presentations.
•Attempt to find security flaws across the Adobe product line. Using the knowledge gained on one product, help educate other product teams.
•Help design security-related functionality and verify proper implementation of new features.
•Provide technical expertise and support in the performance of risk assessments and the implementation of appropriate secure software development processes.
•Provide and analyze security data in the event of an investigation, and assist implementing of recommended corrective actions.
•Maintain awareness of up-to-date threat and vulnerability profiles.

Knowledge & Skills:

•Bachelor degree in computer science, engineering or a related discipline, and at least eight years of technical experience working with security, or an equivalent combination of education and work experience.
•Demonstrated experience in software development using C, C++, and/or Java.
•Experience in performing risk assessments (Identification of Vulnerabilities, Policy Analysis, Risk Analysis and Mitigation) and application penetration testing.
•Experience in all of the following areas: application security architectures, cryptography, secure coding practices, input validation, threat modeling.
•Domain expertise in web client security, security of virtual machines and emulators, user privacy and security requirements, secure UI development, consumer and desktop product security.
•Good analytical ability, consultative and communication skills; strong written and oral skills (will occasionally interface with senior management).
•Minimal travel required, some possible, if desired.
•Security experience with Adobe and/or Macromedia products such as Flash, Dreamweaver, Acrobat, LiveCycle.
•Application security consulting experience with/for major software ISVs.

Please contact

Options: ReplyQuote

Sorry, only registered users may post in this forum.