Abbott Product Security Analyst II in St. Paul, Minnesota
At Abbott, we're committed to helping people live their best possible life through the power of health. For more than 125 years, we've brought new products and technologies to the world -- in nutrition, diagnostics, medical devices and branded generic pharmaceuticals -- that create more possibilities for more people at all stages of life. Today, 99,000 of us are working to help people live not just longer, but better, in the more than 150 countries we serve.
The Product Security Analyst II will conduct security monitoring, analysis, and incident response of Abbott products. The Product Security Analyst II will be responsible for partnering with IT operations and monitoring security activities of the critical security infrastructure at Abbott supporting customer facing products such as Merlin.net, CardioMEMS, and SJMConnect. This person must be prepared and able to protect Abbott products and assets and information resources from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording, or destruction.
Develop and analyze intelligence data as it pertains to the security of the Product Technology and Security environment
Monitors and responds to security events by taking necessary course of action such as identifying, containing, eradicating, recovering, extracting indicators, disseminating IOCs to supporting teams.
Proactive monitoring and handling of product vulnerabilities in accordance with FDA post-market guidance.
Vulnerability identification and scanning of medical devices, tracking results through resolution
Analyzes network traffic and web application firewall events to determine vulnerabilities, recommends safeguards to mitigate risk, and performs compliance reviews to ensure applications and servers are operating in accordance with established policies and procedures.
Performs Incident Handling duties and coordinates with business and application owners to contain and remediate security incidents.
Maintains security infrastructure & cyber-security operations to mitigate identified risks, to meet business objectives, and to meet regulatory requirements.
Works with security technologies and tools, such as SIEM, IDS/IPS, WAF, logical access controls, NGFW, and security operations management systems in order to support security across the enterprise.
Submits content tuning requests to improve alert fidelity and reduce false positives
Automates manual tasks through technology integrations using APIs and scripting
Performs project leadership tasks on select security projects and supports new security project evaluations.
Provides assistance, guidance, support, & remediation of security architectural/ technical issues to Product Security and Technology environments
Supports security audit information gathering, review, & remediation.
Continually reviews and enhances existing knowledge of the security aspects of common product sets and technologies.
Complies with U.S. Food and Drug Administration (FDA) regulations, other regulatory requirements, Company policies, operating procedures, processes, and task assignments. Maintains positive and cooperative communications and collaboration with all levels of employees, customers, contractors, and vendors.
Performs other related duties and responsibilities, on occasion, as assigned.
3+ years of experience working in an Information Security environment.
Bachelor’s degree required, but will consider applicable work experience as it translates to an equivalent degree.
Experience in supporting cyber-security event/log analysis and/or incident response, and conducting analysis of cyber-security events required.
GCIH, GSEC, CISSP or equivalent certification preferred.
Experience with programming and scripting languages, preferably Python and PowerShell.
Experience with SIEM systems, preferably Splunk. Familiar with Regex.
Experience working in a broader enterprise/cross-division business unit model preferred.
Exceptional written and verbal communication skills; must be able to effectively communicate to all levels of staff up to executive-level management, customers (internal and external), and vendors.
Must have strong time management skills and an ability to thrive in a high cadence operation.
Must work well within a tight-knit team environment and be able work with peers, customers, and partners to support the mission.
Must be flexible with working hours during critical deliveries and operational issues.
Strong verbal and written English communication skills are required for this role. Multi-lingual communication skills are a plus, but are not required.
Ability to train others and participate in knowledge sharing with other staff.
Proven ability to make sound decisions in a timely manner
Strong problem solving skills
An Equal Opportunity Employer
Abbot welcomes and encourages diversity in our workforce.
We provide reasonable accommodation to qualified individuals with disabilities.
To request accommodation, please call 224-667-4913 or email firstname.lastname@example.org