Security Engineer

Summary

Join AbbVie's Business Technology team as a Security Engineer and contribute to the digital transformation of this leading biopharma company. As a member of the Information Security Risk Management architecture team, you will play a crucial role in shaping the organization's security strategy, architecture, and practices. You will design, develop, and implement security controls and solutions, collaborate with other departments to align security measures with organizational goals, and partner with application teams to establish security baseline requirements. This role also involves utilizing enterprise tools for vulnerability management and developing custom integrations for proactive monitoring. You will lead posture and hygiene efforts, manage documentation, and ensure compliance with AbbVie requirements. This position offers opportunities to make a significant impact on patient care and community well-being.

Requirements

• Bachelor’s degree in relevant field and at least 5 years relevant experience OR Master’s degree in relevant field and at least 4 years’ experience
• Possess a deep understanding of the Center for Internet Security’s Critical Security Controls, specifically the CIS 18 framework
• Strong working knowledge in configuring common operating systems, including Windows Servers, Windows Desktops, and RedHat Linux, among others
• Proficient in scripting languages, including Python, Bash, and/or PowerShell
• Excellent written and oral communication skills
• Strong problem-solving and analytical skills with the ability to identify security risks and propose effective solutions
• Strong people skills, collaborative ability to work with IT stakeholders inside and outside of the organization
• Understand and adhere to corporate standards regarding applicable Corporate and Divisional Policies, including code of conduct, safety, GxP compliance, data security, and the software development lifecycle

Responsibilities

• Design, develop, and implement security controls and solutions that enhance AbbVie’s security hygiene. Ensure that security measures are effectively integrated into IT systems and applications
• Collaborate with IT, network, and other relevant departments to align security measures with organizational goals and compliance requirements
• Partner with platform and application teams to establish clear security baseline requirements, following the Center for Internet Security Critical Security Controls known as ‘CIS 18’. The partnership ensures that security best practices are integrated into the development and deployment processes
• Utilize existing enterprise tools dedicated to vulnerability management, asset inventory, and cyber hygiene to ensure that all assets meet established security baseline requirements
• Develop custom integrations using APIs or other scripting tools for high-risk applications to enable proactive monitoring of critical security controls
• Lead posture and hygiene efforts to effectively drive and complete initiatives successfully. The leadership role involves coordinating resources, setting clear objectives, and ensuring sustained focus on enhancing the organization’s security posture
• Manage documentation such as baselines, Standard Operating Procedures (SOPs), policies, and work instructions in accordance with AbbVie requirements. This responsibility includes ensuring the documents are accurate, up-to-date, and aligned with organizational standards

Benefits

• Paid time off (vacation, holidays, sick)
• Medical/dental/vision insurance
• 401(k)
• Short-term incentive programs