Abbott DevOps Security Engineer in Chicago, Illinois
At Abbott, we're committed to helping people live their best possible life through the power of health. For more than 125 years, we've brought new products and technologies to the world -- in nutrition, diagnostics, medical devices and branded generic pharmaceuticals -- that create more possibilities for more people at all stages of life. Today, 99,000 of us are working to help people live not just longer, but better, in the more than 150 countries we serve.
The organization is building its DevOps Engineering capability to support the Digital Transformation initiatives in eCommerce and related Digital channels. This is a global team co-located across 3 locations – India-Mumbai, EMEA and US.
The DevOps Engineering team will work on new automation tools, scripting languages, web technologies, and platform services and features. This team will work on the latest and greatest versions of tool, technologies and platforms and day-to-day responsibilities would include ensuring
Infrastructure as a Code
Continuous Integration & Delivery
Continuous Monitoring & Testing
The DevOps Security Engineer is responsible for ensuring Secure by Design principles are followed and that security is built into each release by the DevOps team. The Engineer will have a dotted line to the Information Security and Risk Management group to understand all security policies and best practices. Using this knowledge and relationship the Security Compliance Engineer will be the security champion within a given product team to ensure applications are built securely. All projects will be delivered in compliance with regulations for PCI, Data Privacy, Cybersecurity, SOX and others.
Provide security leadership to DevOps product teams
Review security designs to ensure they comply with all policies and best practices
Partner with test resources to design adequate security tests
Fulfill required scheduled security activities such as quarterly PCI scans
Core Job Responsibilities of the Security Compliance Engineer
Planning: Create appropriate plans for reviewing application security as defined per policy and industry best practices
Security: Ensure the following baseline security controls are implemented for each DevOps product
Security logging for applications
Patching of Software / OS
Perimeter Security Controls
Compliance with Data Protection Regulations
Application Software Security
Monthly Vulnerability Scanning
Technology Lifecycle Management
Communication: Communicate security policies and best practices
Quality Management: Responsible for compliance with applicable Corporate and Divisional Policies and procedures
Leadership: Provide security mentoring to DevOps engineers and product teams
Bachelor degree in Business, Computer Science or related discipline.
At least 3 yrs experience in a development role with experience in securing
Having DevOps certifications will be an added advantage
Candidate will be providing support for regulated systems requiring strict adherence to SDLC policies and procedures.
Experience in Healthcare eCommerce and/or Digital health marketing processes or similar regulated industries is preferred
Candidate having working experience on regulated systems complying with Payment Card Industry (PCI), Data Privacy regulations – like EU and similar Data Sovereignty Laws, SOX, Cyber Security.
Knowledge of DevSecOps practices using a Continuous Integration / Continuous Deployment pipeline
Play the role of a security champion in the organization by bringing in a Secure by Design mindset to the DevOps team
Works with Information Security and Risk Management to understand security policies and best practices and then implements those best practices in the product team.
Make decisions that impact project level activities.
An Equal Opportunity Employer
Abbot welcomes and encourages diversity in our workforce.
We provide reasonable accommodation to qualified individuals with disabilities.
To request accommodation, please call 224-667-4913 or email email@example.com