Cybersecurity Specialist
Abbott · Illinois, United States · Yesterday
Information Technology$78k–$156k/yrFull-time
About the role
This Cybersecurity Specialist position can work out remotely within the U.S. The role is responsible for assisting and identifying potential security risks, vulnerabilities, and threats to execute mitigation and remediation strategies/processes that ensure Abbott builds safe and secure products that are compliant with industry cybersecurity regulation and meet customer and patient security expectations.
Responsibilities
- Develop and implement cybersecurity deliverables for product software releases and provide technical security responses to customer inquiries.
- Support the protection of manufacturing assets through implementation of security controls, vulnerability assessments, risk evaluations, and mitigation activities.
- Evaluate the cybersecurity posture of third-party vendors and suppliers providing components or services for products.
- Work with development operations and teams to develop and implement monitoring and security solutions in stand-alone and embedded product software and supporting applications.
- Conduct comprehensive software assessments to identify potential security risks and vulnerabilities.
- Support the security of applications and computing assets across public, private, and hybrid cloud environments.
- Protect applications in compliance with multiple global privacy, security, business resiliency and compliance frameworks.
- Support security system administration activities, assist with security configuration reviews, and help implement solutions to reduce risk.
- Participate in incident breach and response activities for product and supporting applications.
- Participate in cross-functional team coordination to achieve defined security goals as well as meet technical requirements in support of detailed implementation plans for security projects.
- Provide technical advice and training about potential security risks and prevention strategies.
- Develop security content for monthly site security metrics reporting on the efficacy and efficiency of security program deployment at the site, based on global metrics & reporting standards.
- Assist in the completion of Secure Lifecycle Process (SLP) cybersecurity assessments and threat modeling, ensuring compliance with industry standards and identifying potential security vulnerabilities throughout the software development lifecycle.
Requirements
- Bachelor's degree in Computer Science, Information Systems, Engineering, Cybersecurity, or a related field.
- Minimum 5 years of relevant professional experience, including at least 2 years of experience in cybersecurity, information security, software security, IT, engineering, or a related discipline.
- Demonstrated knowledge of cybersecurity frameworks and standards such as NIST, ISO 27001, IEC 62304, and Purdue Enterprise Reference Architecture (PERA).
- Understanding of product safety risk and relationship with product cybersecurity risk.
- Familiarity with secure software development lifecycle (SSDLC), vulnerability management, threat modeling, and cybersecurity best practices.
- Strong organizational and time-management skills.
- Demonstrated critical thinking, analytical skills, judgment, and logic for problem-solving and decision-making in an environment with changing priorities.
- Ability to work effectively in a team environment, adapting to rapidly changing business and technological needs.
- Excellent documentation, communication and interpersonal skills.
Qualifications
- One or more industry-recognized cybersecurity certifications such as CISSP, CISM, CEH, Security+, GSEC, or equivalent are preferred.
- Experience or exposure to product security, medical device security, cloud security, or secure software development is preferred.
Pay
The base pay for this position is $78,000.00 – $156,000.00. In specific locations, the pay range may vary from the range posted.