Sr. Manager Risk & Governance
Adobe
Job Overview
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
Sr. Manager Risk & Governance at Adobe
Opportunity:
Lead Adobe’s Security Risk and Governance program by advancing the security risk strategy through qualitative and quantitative analysis. Improve decision-making using security insights, data analytics, and modeling to validate the organization’s risk landscape. Manage Adobe’s Security Management framework, integrate industry-leading risk measurement models, and provide senior leadership with actionable insights. Drive the Security Policy & Procedures framework and transform the PSOP program to align technical risks with business outcomes.
The Challenge:
Transform the security risk program with qualitative and quantitative insights, using AI, data analytics, and financial analysis. Maintain and enhance Adobe’s security risk framework, ensuring accurate risk capture, prioritization, and compliance with regulatory changes. Lead the Security Governance and Policy program, aligning policies and standards with input from Security Architecture, Adobe CCF, Cyber Operations, and Product Security. Apply industry risk frameworks (e.g., FAIR, OCTAVE, NIST RMF, ISO 27005) to governance processes and quantify risks in financial terms to support executive decision-making. Develop dashboards and BI tools to visualize risk metrics for technical and non-technical partners. Manage and mentor a high-performing risk and governance team, fostering collaboration and growth. Optimize GRC platforms (e.g., ServiceNow IRM, Archer, Vanta, Drata) and integrate them with enterprise tools. Prepare business-focused reports and presentations for senior leadership, bridging technical details with strategic insights.
What is needed to succeed:
- 10+ years of experience in Security Risk Management (or 13+ years with a Bachelor's degree).
- 3-5 years of experience managing high-performing teams.
- Expertise in security risk management models (e.g., FAIR, OCTAVE, NIST RMF, ISO 27005) and regulatory frameworks.
- Proficiency in threat modeling, data analytics, AI/ML, and automation tools for risk analysis.
- Strong knowledge of security concepts, tools, industry trends, and vulnerabilities.
- Experience with complex security policies and standards (e.g., Cloud Architecture, Vulnerability Management).
- Comfortable leading the Policy Governance function and has in-depth understanding and knowledge working with complex security policies and standards (e.g. Cloud Architecture, Vulnerability Management etc.)
- Led Compliance with Audit Frameworks (e.g. SOC2, ISO 27001, NIST 800-53 etc.)
- Relevant certifications such as CISSP, CISM, CISA, CRISC.
Key skills/competency
- Security Risk Management
- Governance
- Qualitative Analysis
- Quantitative Analysis
- Data Analytics
- GRC Platforms
- FAIR Framework
- NIST RMF
- Policy Development
- Cybersecurity
How to Get Hired at Adobe
- Understand Adobe's innovation: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor, especially their AI integration.
- Tailor your resume strategically: Highlight your extensive experience in security risk management, GRC platform optimization, and quantifiable risk analysis results relevant to Adobe.
- Showcase framework mastery: Emphasize deep expertise in industry risk frameworks like FAIR, OCTAVE, NIST RMF, and ISO 27005 during interviews.
- Prepare for technical and AI discussions: Be ready to discuss how you've leveraged data analytics, AI/ML, and automation tools for risk analysis and enhanced security policies.
- Demonstrate leadership and influence: Provide concrete examples of successfully leading high-performing teams and effectively communicating complex security insights to senior leadership at Adobe.
Frequently Asked Questions
Find answers to common questions about this job opportunity
Explore similar opportunities that match your background