Abbott DevOps Security Engineer in Chicago, Illinois

At Abbott, we're committed to helping people live their best possible life through the power of health. For more than 125 years, we've brought new products and technologies to the world -- in nutrition, diagnostics, medical devices and branded generic pharmaceuticals -- that create more possibilities for more people at all stages of life. Today, 99,000 of us are working to help people live not just longer, but better, in the more than 150 countries we serve.

The organization is building its DevOps Engineering capability to support the Digital Transformation initiatives in eCommerce and related Digital channels. This is a global team co-located across 3 locations – India-Mumbai, EMEA and US.

The DevOps Engineering team will work on new automation tools, scripting languages, web technologies, and platform services and features. This team will work on the latest and greatest versions of tool, technologies and platforms and day-to-day responsibilities would include ensuring

  • Infrastructure as a Code

  • Continuous Integration & Delivery

  • Continuous Monitoring & Testing

  • Continuous Deployment

The DevOps Security Engineer is responsible for ensuring Secure by Design principles are followed and that security is built into each release by the DevOps team. The Engineer will have a dotted line to the Information Security and Risk Management group to understand all security policies and best practices. Using this knowledge and relationship the Security Compliance Engineer will be the security champion within a given product team to ensure applications are built securely. All projects will be delivered in compliance with regulations for PCI, Data Privacy, Cybersecurity, SOX and others.

  • Provide security leadership to DevOps product teams

  • Review security designs to ensure they comply with all policies and best practices

  • Partner with test resources to design adequate security tests

  • Fulfill required scheduled security activities such as quarterly PCI scans

Core Job Responsibilities of the Security Compliance Engineer

  • Planning: Create appropriate plans for reviewing application security as defined per policy and industry best practices

  • Security: Ensure the following baseline security controls are implemented for each DevOps product

  • Security logging for applications

  • Patching of Software / OS

  • Malware Defenses

  • Disaster Recovery

  • Perimeter Security Controls

  • Compliance with Data Protection Regulations

  • Access Management

  • Application Software Security

  • Monthly Vulnerability Scanning

  • Technology Lifecycle Management

  • Communication: Communicate security policies and best practices

  • Quality Management: Responsible for compliance with applicable Corporate and Divisional Policies and procedures

  • Leadership: Provide security mentoring to DevOps engineers and product teams

Bachelor degree in Business, Computer Science or related discipline.

  • At least 3 yrs experience in a development role with experience in securing

  • Having DevOps certifications will be an added advantage

  • Candidate will be providing support for regulated systems requiring strict adherence to SDLC policies and procedures.

  • Experience in Healthcare eCommerce and/or Digital health marketing processes or similar regulated industries is preferred

  • Candidate having working experience on regulated systems complying with Payment Card Industry (PCI), Data Privacy regulations – like EU and similar Data Sovereignty Laws, SOX, Cyber Security.

  • Knowledge of DevSecOps practices using a Continuous Integration / Continuous Deployment pipeline

  • Play the role of a security champion in the organization by bringing in a Secure by Design mindset to the DevOps team

  • Works with Information Security and Risk Management to understand security policies and best practices and then implements those best practices in the product team.

  • Make decisions that impact project level activities.

An Equal Opportunity Employer

Abbot welcomes and encourages diversity in our workforce.

We provide reasonable accommodation to qualified individuals with disabilities.

To request accommodation, please call 224-667-4913 or email corpjat@abbott.com