Manager Product Security

Posted:
10/17/2024, 4:43:03 AM

Location(s):
Virginia, United States ⋅ Charlottesville, Virginia, United States

Experience Level(s):
Senior

Field(s):
IT & Security

Workplace Type:
Remote

Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 114,000 colleagues serve people in more than 160 countries.

     

JOB DESCRIPTION:

Working at Abbott

At Abbott, you can do work that matters, grow, and learn, care for yourself and family, be your true self and live a full life. You’ll also have access to:

  • Career development with an international company where you can grow the career you dream of .

  • Free medical coverage for employees* via the Health Investment Plan (HIP) PPO

  • An excellent retirement savings plan with high employer contribution

  • Tuition reimbursement, the Freedom 2 Save student debt program and FreeU education benefit - an affordable and convenient path to getting a bachelor’s degree.

  • A company recognized as a great place to work in dozens of countries around the world and named one of the most admired companies in the world by Fortune.

  • A company that is recognized as one of the best big companies to work for as well as a best place to work for diversity, working mothers, female executives, and scientists.

The Opportunity

The Manager of Product Security is a key leadership role within our Informatics business unit within the Abbott Rapid Diagnostics (ARDx) Division. This position can be based in Charlottesville, VA, Lake Forest, IL, or can be performed remotely within the Continental United States near an airport.

We’re empowering smarter medical and economic decision making to help transform the way people manage their health at all stages of life. Every day, more than 10 million tests are run on Abbott’s diagnostics instruments, providing lab results for millions of people.

The Product Security Manager is a high caliber performer responsible for identifying security risks of developed, marketed, and fielded products, including, but not limited to, patient safety and data protection risks. The person hired will also support the product security program that offers services such as: product security risk assessment, security testing, security documentation, security event handling, metrics & monitoring, External communications and staffing, education and training.

What You’ll Work On

  • Lead penetration testing efforts to identify gaps/opportunities for improvement

  • Drive execution of efforts to implement regulatory compliance frameworks

  • Support engineering and development efforts to remediate security and compliance risks

  • Support the development and compliance of Product Security Policies and Procedures

  • Support the integration of Product Security Policies and Procedures into Product Quality Systems.

  • Develops local strategy which is aligned with the business strategy and implements related tactical activities.

  • Lead the execution of product security program, including aligning with business and product strategy, gaining management approval and support, and overseeing successful execution.

  • Support cross-functional activities that help the product teams build safe and secure products that are compliant with industry regulation and meeting customer and patient security/safety expectations.

  • Maintain positive and cooperative communications and collaboration with all levels of employees, customers, contractors, and vendors.

  • Perform all procedures necessary to ensure the safety of information systems and to protect systems from intentional or inadvertent access or destruction; provide oversight and generation of necessary deliverables

  • Must be able to weigh business needs against security concerns and articulate issues to management.

  • Reporting of security related metrics to local, Division, and Corporate Management.

  • Lead product security communication efforts, training, and governance programs.

  • Collaborate with product teams to create and maintain a secure product development lifecycle process to ensure that security requirements/controls can be embedded within the product and development process.

  • Lead efforts to integrate new security requirements into Quality System and processes.

  • Provides strategic consultancy support to clients, Senior Technical Specialists, and other technical architects in all aspects of enabling technologies to meet business demands.

  • Works with legal and other regulatory and compliance groups to ensure the company is compliant with key laws, regulations, and certifications

  • Coach and guide lower-level security professionals.

  • Serve as the  point of contact for all security related activities.

Required Qualifications

  • Bachelor’s degrees in Information Security, Computer Science, Information Technology (IT), or equivalent combination of education and work experience

  • 7 years of work experience in information security.

Preferred Qualifications

  • 10+ years of relevant professional experience in information security, software development, or IT management.

  • Exposure to software and cloud infrastructure security

  • Certifications such as CISA, CIMS, CRISC, CISSP, CPP or CFE

  • Knowledge of national and internation regulatory compliances and frameworks such as NIST Cybersecurity Frameworks, ISO 27001, GDPR, HIPAA/HITECH, Department of Defense Risk Management Framework.

  • Experience with implementation and operational use of Governance Risk and Compliance (GRC) toolsets.

  • Strong analytical skills, business intelligence, effective communication, interpersonal skills, organizational intelligence, relationship management

  • Ability to make meaningful decisions based on sound judgement

  • Ability to work effectively with a variety of roles from executive management to cybersecurity analysts

* Participants who complete a short wellness assessment qualify for FREE coverage in our HIP PPO medical plan. Free coverage applies in the next calendar year.

Learn more about our health and wellness benefits, which provide the security to help you and your family live full lives:  www.abbottbenefits.com

Follow your career aspirations to Abbott for diverse opportunities with a company that can help you build your future and live your best life. Abbott is an Equal Opportunity Employer, committed to employee diversity.

Connect with us at www.abbott.com, on Facebook at www.facebook.com/Abbott and on Twitter @AbbottNews and @AbbottGlobal.

     

The base pay for this position is

$95,000.00 – $190,000.00

In specific locations, the pay range may vary from the range posted.

     

JOB FAMILY:

Information Risk & Quality Assurance

     

DIVISION:

CMI ARDx Cardiometabolic and Informatics

        

LOCATION:

United States > Charlottesville : 915 E High Street

     

ADDITIONAL LOCATIONS:

United States > Lake Forest : J55

     

WORK SHIFT:

Standard

     

TRAVEL:

Yes, 10 % of the Time

     

MEDICAL SURVEILLANCE:

No

     

SIGNIFICANT WORK ACTIVITIES:

Continuous sitting for prolonged periods (more than 2 consecutive hours in an 8 hour day), Keyboard use (greater or equal to 50% of the workday)

     

Abbott is an Equal Opportunity Employer of Minorities/Women/Individuals with Disabilities/Protected Veterans.

     

EEO is the Law link - English: http://webstorage.abbott.com/common/External/EEO_English.pdf

     

EEO is the Law link - Espanol: http://webstorage.abbott.com/common/External/EEO_Spanish.pdf

Abbott

Website: https://abbott.com/

Headquarter Location: Illinois City, Illinois, United States

Employee Count: 1001-5000

Year Founded: 1944

IPO Status: Public

Last Funding Type: Post-IPO Debt

Industries: Biotechnology ⋅ Emergency Medicine ⋅ Genetics ⋅ Health Care ⋅ Health Diagnostics ⋅ Manufacturing ⋅ Medical ⋅ Medical Device ⋅ Nutrition ⋅ Pharmaceutical