Cybersecurity Senior Analyst

Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 115,000 colleagues serve people in more than 160 countries.

JOB DESCRIPTION:

At Abbott, you can do work that matters, grow, and learn, care for yourself and family, be your true self and live a full life. You'll also have access to:

• Career development with an international company where you can grow the career you dream of.
• Free medical coverage for employees* via the Health Investment Plan (HIP) PPO
• An excellent retirement savings plan with high employer contribution
• Tuition reimbursement, the Freedom 2 Save student debt program and FreeU education benefit - an affordable and convenient path to getting a bachelor's degree.
• A company recognized as a great place to work in dozens of countries around the world and named one of the most admired companies in the world by Fortune.
• A company that is recognized as one of the best big companies to work for as well as a best place to work for diversity, working mothers, female executives, and scientists.

The Opportunity:

We Are Looking to Add a Key Member to Our Technology Risk Management Team! The Cybersecurity Sr. Analyst is a member of the team that evaluates and monitors third party risks. The selected candidate will develop a deep understanding of Abbott's vendor relationships (including completing reviews of material vendor relationships/programs consistent with policy), as well as participate in monitoring, evaluating, and reporting on other risk areas that could potentially impact Abbott.

As a Third Party Risk Analyst, You'll:

Core Job Responsibilities

• Manage vendor risks as defined by the Technology Vendor Risk Management process and procedures
• Perform daily tasks using operational GRC toolsets (Governance Risk and Compliance)
• Audit the initial approval of new vendor relationships to ensure vendor approval policies are being followed and to identify specific risks that should be monitored.
• Act as a resource to Business Division Leaders and Senior Leadership to assist in the monitoring and analysis of identified risks and performance metrics.
• Analysis of operating statistics and portfolio quality/performance of vendor relationships making recommendations to mitigate risks.
• Regular monitoring of vendor performance to ensure compliance with vendor agreements and commitments.
• Perform periodic reviews of Third Party vendors to confirm risk rating
• Support the advancement of Abbott's cyber threat and vulnerability management program to ensure consistent identification, analysis, response, and monitoring of cyber security threats, events, and vulnerabilities.
• Guide business units, application development teams, and third-party vendors to achieve program requirements while enabling the business.
• Apply technical knowledge of Quality System Controls to reviews vendors ability to perform, quality audits, review quality events, document control and training management.
• Participate in cross-team coordination to achieve defined security goals as well as meet technical requirements in support of detailed implementation plans for security projects.
• Support management in the development of strategies, policy and standards to protect Abbott information and technology assets.

Position Accountability / Scope

• Reports to the Sr. Manager Vendor Risk Management of the Enterprise and Product Security division. The scope of this position is Abbott wide and considers the information security implications unique to all Abbott divisions when implementing governance and risk management strategies.

Minimum Education/Experience

• Bachelor's degree in Information Security, Computer Science, or related field; or equivalent experience
• 4+ years of experience in relevant field
• Other Requirements: Candidate must possess strong analytical skills, an ability to work independently, inquisitiveness about different aspects of Abbott's businesses, desire to help others, and interpersonal skills that allow the candidate to work collaboratively with both internal and external customers.

PreferredExperience

• Demonstrated experience with Archer Engage and/or other vendor management software for tracking and managing the vendor management lifecycle.
• Understanding of procurement & risk processes is an added advantage
• Ability to multitask and to complete difficult assignments within tight deadlines
• Skilled at managing issues through to resolution
• Knowledge of information security and risk control
• Demonstrated in-depth knowledge of concepts, best practices and controls in a breadth of information security areas/domains
• Collaborate across multi-departments to promote industry best practices and strategic organizational security efforts the development of our IT security policies
• Possess expertise in valuing and implementing industry standards such as the ISO 27001/2, SOC 2, HITRUST and FedRAMP Information Security standard and the ISO 22301 Business Continuity Standard.
• Experience with implementation and operational use of GRC toolsets (Governance Risk and Compliance)
• Possess CISSP/CISM certification (or similar) and be knowledge of national and international regulatory compliances and frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS.
• Lead Auditor Training for ISO 13485, or ISO 9001 (ASQ), or relevant experience, for Quality Systems/GxP-impacting assessments and audits

Apply Now

* Participants who complete a short wellness assessment qualify for FREE coverage in our HIP PPO medical plan. Free coverage applies in the next calendar year.

Learn more about our health and wellness benefits, which provide the security to help you and your family live full lives: www.abbottbenefits.com

Follow your career aspirations to Abbott for diverse opportunities with a company that can help you build your future and live your best life. Abbott is an Equal Opportunity Employer, committed to employee diversity.

Connect with us at www.abbott.com, on Facebook at www.facebook.com/Abbott and on Twitter @AbbottNews and @AbbottGlobal.

The salary for this role is between:

N/A

JOB FAMILY:

Information Risk & Quality Assurance

DIVISION:

GIS Global Information Services

LOCATION:

United States > Waukegan : J46

ADDITIONAL LOCATIONS:

WORK SHIFT:

Standard

TRAVEL:

Yes, 10 % of the Time

MEDICAL SURVEILLANCE:

Not Applicable

SIGNIFICANT WORK ACTIVITIES:

Continuous sitting for prolonged periods (more than 2 consecutive hours in an 8 hour day), Keyboard use (greater or equal to 50% of the workday)

Abbott is an Equal Opportunity Employer of Minorities/Women/Individuals with Disabilities/Protected Veterans.

EEO is the Law link - English: http://webstorage.abbott.com/common/External/EEO_English.pdf

EEO is the Law link - Espanol: http://webstorage.abbott.com/common/External/EEO_Spanish.pdf