Senior Manager Cybersecurity Third Party Risk Assurance

Summary

Join AbbVie's Risk Management Assurance team as a mid-level cybersecurity manager. Lead the team, ensuring workload balance and supporting career growth. Present metrics to senior leadership and identify process improvements. Collaborate with business owners on third-party evaluations, conducting cyber and information security assessments. Analyze security controls, serve as escalation point, document findings, and track risk remediation. This role offers a clear path to senior management positions.

Requirements

• Bachelor's Degree and 8 years of experience OR Master’s Degree and 7 years of experience or PHD and 2 years of experience
• Basic understanding of security controls, concepts, and frameworks (e.g. ISO, NIST, ect)
• Ability to communicate complex technical security practices to non-technical resources
• Familiarity with cyber security terminology and concepts, and basic understanding of the cyber threat landscape and attack vectors
• Capable of learning new concepts and processes quickly, and adapting to a constantly changing environment
• Demonstrated critical thinking, problem solving, and analytical skills
• Strong organization skills with attention to detail
• Strong written and verbal communication skills with a high level of professionalism
• Ability to work independently and effectively as part of a team

Responsibilities

• Lead the risk management assurance team
• Ensure workload balance across the team
• Support career growth of team members
• Present metrics and reporting to senior leadership and key stakeholders
• Identify areas of process improvement
• Work directly with Business Owners and key stakeholders on at-risk third-party evaluations
• Conducting cyber and information security evaluations on AbbVie third parties
• Analyzing cyber and information security controls in relations to AbbVie expectations and requirements
• Be the escalation point for the team
• Thoroughly document work and present findings to management
• Track identified risk to completion, including validation of remediation efforts
• Adhering to cyber security processes, procedures and other documentation while performing analyst duties

Benefits

• Paid time off (vacation, holidays, sick)
• Medical/dental/vision insurance
• 401(k)
• Short-term incentive programs
• Long-term incentive programs