Cybersecurity Specialist

Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 115,000 colleagues serve people in more than 160 countries.

JOB DESCRIPTION:

This position assists Compliance and Information Security in providing internal control assessment, auditing and monitoring, risk management and mitigation. This role will work to identify risk and ensure compliance with industry standards, relevant laws and regulations, and industry best practices. This position also assists in maintaining and developing appropriate policies, procedures, and documentation to maintain compliance with local, state, and federal laws. Reviews and evaluates compliance issues and concerns within the organization. The candidate is also expected to have a strong work ethic, leverage analytical and critical thinking, have the ability to follow instructions, have strong listening and communication skills.

WHAT YOU'LL DO:

• Work with a variety of cross-functional teams to ensure compliance with laws, regulations, and policies

• Support Audit Readiness during external and internal Audit Activities
• Ensure compliance of business continuity management policies and process in accordance with applicable regulatory requirements
• Develop and maintain information security standards, guidelines, and procedures.
• Align with industry guidelines to implement secure design policies and procedures
• Determine security violations and inefficiencies by conducting periodic reviews

• Implement and maintain security controls
• Conduct threat and risk analysis and analyze the business impact of new and existing systems and technologies to eliminate risk, performance, and capacity issues
• Assist with incident response as events are escalated, including triage, remediation, and documentation
• Implements security improvements by assessing current situation; evaluating trends; anticipating requirements
• Maintain quality service by following organization standards

• Contribute to team effort by accomplishing related results as needed
• Attend regular project and implementation meetings and serve as the security consultant to help guide secure practices
• Keep up to date with the current and proposed security changes impacting regulatory, privacy and security industry best practice guidance
• Maintain technical knowledge by attending educational workshops

EDUCATION AND EXPERIENCE YOU'LL BRING

REQUIRED:

• Bachelor's degree or an Associates Degree AND equivalent combination of education and work experience
• Minimum 4 years cybersecurity or Mobile and embedded software cybersecurity experience with a strong preference for compliance experience
• Experience in Audit and certification process
• Demonstrated knowledge of General Computer Controls, including Information Security, Information System Operations, Vendor Management, Business Continuity, Networks, Database, System Software, Hardware, and Application Development controls

• Strong analytical skills to analyze laws, regulations and translating the security requirements into appropriate security programs, projects, controls, and training
• Demonstrated excellent oral and written communication skills for interaction with all levels of management and staff including the ability to communicate regulatory requirements, security objectives, policies, and standards in business terms
• Strong team player with the ability to communicate effectively within cross-functional groups and perform peer reviews of work products and documents
• Excellent organizational skills and critical attention to detail and deadlines with the ability to handle multiple tasks simultaneously
• Holds one or more cybersecurity certifications or has completed necessary coursework.

• Self-motivated, well-organized and able to position controls in anticipation of threats.

PREFERRED:

• At least 4 years of cybersecurity experience
• Minimum two years of experience writing and interpreting information security policies and standards

• Advanced degree
• Medical device product security experience
• Business Continuity & Quality Management
• HIPAA knowledge
• Audit and Risk Management experience

• Development process and security process knowledge
• Experience in threat modeling
• Experience in risk management
• Ability to effectively communicate business risk as it relates to cybersecurity
• Up-to-date understanding of a wide range of incident response, system configuration, vulnerability management and hardening guidelines

• Track record of acting with integrity, taking pride in work, ability to respond to constructive criticism in a positive manner, seeking to excel, being curious and adaptable, and communicating effectively
• Vulnerability and penetration-testing skills
• Advanced understanding of software development lifecycle (SLDC) and secure design principles
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model and common security elements
• Understanding of OWASP, CVSS, the MITRE ATT&CK framework

• Understanding of NIST framework and FDA requirements
• Displays an analytical and problem-solving mindset
• Is highly organized and efficient
• Leverages strategic and tactical thinking
• Works calmly under pressure and with tight deadlines

• Demonstrates effective decision-making skills
• Is highly trustworthy and leads by example
• Stays current with evolving threat landscape

WHAT WE OFFER

At Abbott, you can have a good job that can grow into a great career. We offer:

Training and career development, with onboarding programs for new employees and tuition assistance

Financial security through competitive compensation, incentives and retirement plans

Health care and well-being programs including medical, dental, vision, wellness and occupational health programs

Paid time off

401(k) retirement savings with a generous company match

The stability of a company with a record of strong financial performance and history of being actively involved in local communities

Learn more about our benefits that add real value to your life to help you live fully: http://www.abbottbenefits.com/pages/candidate.aspx

Follow your career aspirations to Abbott for diverse opportunities with a company that provides the growth and strength to build your future. Abbott is an Equal Opportunity Employer, committed to employee diversity.

Connect with us at www.abbott.com, on Facebook at www.facebook.com/Abbott and on Twitter @AbbottNews and @AbbottGlobal.

The salary for this role is between:

$71,300 - $142,700

JOB FAMILY:

Information Risk & Quality Assurance

DIVISION:

ADC Diabetes Care

LOCATION:

United States of America : Remote

ADDITIONAL LOCATIONS:

United States > Alameda : 1360-1380 South Loop Road, United States > Bend : 1000 SW Emkay Drive

WORK SHIFT:

Standard

TRAVEL:

Yes, 10 % of the Time

MEDICAL SURVEILLANCE:

Not Applicable

SIGNIFICANT WORK ACTIVITIES:

Continuous sitting for prolonged periods (more than 2 consecutive hours in an 8 hour day), Keyboard use (greater or equal to 50% of the workday)

Abbott is an Equal Opportunity Employer of Minorities/Women/Individuals with Disabilities/Protected Veterans.

EEO is the Law link - English: http://webstorage.abbott.com/common/External/EEO_English.pdf

EEO is the Law link - Espanol: http://webstorage.abbott.com/common/External/EEO_Spanish.pdf