JOB DESCRIPTION:
Working at Abbott
At Abbott, you can do work that matters, grow, and learn, care for yourself and your family, be your true self, and live a full life. You’ll also have access to:
- Career development with an international company where you can grow the career you dream of.
- Employees can qualify for free medical coverage in our Health Investment Plan (HIP) PPO medical plan in the next calendar year.
- An excellent retirement savings plan with a high employer contribution
- Tuition reimbursement, the Freedom 2 Save student debt program, and FreeU education benefit - an affordable and convenient path to getting a bachelor’s degree.
- A company recognized as a great place to work in dozens of countries worldwide and named one of the most admired companies in the world by Fortune.
- A company that is recognized as one of the best big companies to work for as well as the best place to work for diversity, working mothers, female executives, and scientists.
The Opportunity
The Senior Manager Enterprise Cybersecurity reports to the Enterprise and Product Cybersecurity Director. The Enterprise Cybersecurity role is responsible for assisting and ensuring Abbott Enterprise is safe and secure to build products that are compliant with industry regulation and meet customer and patient security expectations. The Enterprise Cybersecurity role will be a key point of contact for CoreDx division. This candidate will be responsible for:
- Cybersecurity for Enterprise across Manufacturing, Distribution, Non-Product, Medical and Non-medical products
- Cybersecurity Asset Inventory
- Cybersecurity Risk Management and Process
- Cybersecurity Vulnerability Management
- Cybersecurity Communication
- Cybersecurity Incident Response
- Cybersecurity Tabletops
- Cybersecurity Oversight Committee
- Cybersecurity risk management and process Subject Matter Expert (SME) for multiple Abbott Organizations
What You’ll Work On
- Maintain divisional compliance with applicable Corporate and Divisional Policies and procedures including training.
- Collaborate with division cross-functional teams to develop and maintain enterprise and product cybersecurity risk management and vulnerability management processes and procedures.
- Lead and support Divisions with enterprise, product, and manufacturing cybersecurity to include risk assessments, threat modeling, and mitigation plans.
- Collaborate with division functional teams to develop and maintain operational procedures for the assessment of Manufacturing and Distribution cybersecurity programs
- Process and technical support for commercial deployments of products worldwide to include into restricted (e.g. China, Russia) environments, ensuring compliance with regional cybersecurity and data protection requirements.
- Build and maintain relationships with internal stakeholders, external partners, and customers to enable successful execution of the division product and enterprise cybersecurity program.
- Serve as a trusted advisor and effectively communicate cybersecurity risks with technical and non-technical internal and external stakeholders, including senior leadership.
- Ensures that user community understands and adheres to necessary procedures to maintain security.
- May require familiarity with identity and access management (IAM), domain structures, user authentication mechanisms, and digital certificate/signing solutions.
- Maintains working knowledge and oversight of network security controls, including firewalls, intrusion detection/prevention systems (IDS/IPS), secure network architecture, and internet protocols.
- Balance business objectives with cybersecurity risks by providing risk-based recommendations and clearly articulating trade-offs to leadership for informed decision-making.
- Lead, mentor, and develop cybersecurity professionals, providing coaching, technical guidance, and career development support across the team.
Minimum Education
BA/BS in Business, Engineering, Computer Science, or related disciplines. Master’s degree is desirable.
Minimum Experience/Training Required
- Overall 10+ years’ experience with 5+ years of experience working in Engineering or Cyber support.
- Strong understanding of Enterprise Cybersecurity and the relationship between threat, vulnerability and potential customer risk in the context of risk management.
- Previous work experience in an Enterprise Cybersecurity role is preferred.
- Understanding medical product safety risk and the relationship with product Cybersecurity risk
- Familiarity with FDA and other countries Regulatory bodies on Cybersecurity guidelines for medical devices and corporate enterprise network
- Familiarity with design of enterprise networks and diagnostic medical devices is a plus
- Understanding industry standards such as the NIST Cybersecurity Framework, FedRAMP, RMF, TIR-57 Principles for medical device security risk management, etc.
Preferred Qualifications:
- Experience with medical device certifications from government agencies is preferred
- Certifications such as CISA, CISM, CRISC, CISSP, CPP or CFE are preferred
- Knowledge of the latest methodologies for enterprise and product cybersecurity risk assessment and vulnerability management and technologies and tools used within the security domain is desired
- Effective Communication skills and collaboration skills.
Supervisory/Management Responsibilities
0-5 direct reports
Misc: This is an onsite role at Abbott location in IL/TX. This is not a remote role/opportunity.
- Learn more about our health and wellness benefits, which provide the security to help you and your family live full lives: www.abbottbenefits.com
- Follow your career aspirations to Abbott for diverse opportunities with a company that can help you build your future and live your best life. Abbott is an Equal Opportunity Employer, committed to employee diversity.
- Connect with us at www.abbott.com, on Facebook at www.facebook.com/Abbott, and on Twitter @AbbottNews.
The base pay for this position is
$129,300.00 – $258,700.00In specific locations, the pay range may vary from the range posted.