Abbott Product Security Analyst, - Testing in Minnesota, United States
At Abbott, we're committed to helping you live your best possible life through the power of health. For more than 125 years, we've brought new products and technologies to the world -- in nutrition, diagnostics, medical devices and branded generic pharmaceuticals -- that create more possibilities for more people at all stages of life. Today, 94,000 of us are working to help people live not just longer, but better, in the more than 150 countries we serve. Please note that candidates need to be eligible to work in the U.S. without Abbott sponsorship.
The Product Security Testing Analyst will be responsible for identifying and evaluating information security risks relevant to existing and future medical device products and providing security requirements and recommendations for mitigating such risks. Responsibilities include assisting in defining set of security requirements, evaluating ongoing risk and vulnerabilities through scanning and testing techniques and recommending security measures for Abbott.
Perform internal or coordinate external security assessments of medical device products across multiple device product lines.
Provides information security expertise and assists in incorporating control measures into new and existing projects around medical device security
Develops and maintains technical expertise pertaining to Information Security and effectively transfers knowledge to business and R&D team members
Participates in the development and integration of the Security program across the company, including processes regarding the implementation of security mitigations, responding to security incidents, and the consistent handling of security events
Assists with performing risk assessments of Abbott projects and initiatives and anticipates business and industry regulatory issues to provide recommendations and solutions to potential issues or vulnerabilities
Manages and monitors security remediation efforts to successful completion
Works closely with internal business partners to incorporate security mitigations into new implementation during planning phases while driving a continued focus on efficiency
Works with legal and other regulatory and compliance groups to ensure the company is compliant with key laws, regulations, and certifications
Develops and effectively executes project plans, work breakdown structure and task dependencies, communication plans, etc. as needed
Complies with U.S. Food and Drug Administration (FDA) regulations, other regulatory requirements, Company policies, operating procedures, processes, and task assignments.
Maintains positive and cooperative communications and collaboration with all levels of employees, customers, contractors, and vendors.
Performs other related duties and responsibilities, on occasion, as assigned.
Bachelor’s degree in Computer Science, MIS, Information Assurance, or related field. Equivalent combinations of education and work experience may be considered.
2+ years of experience in IT Security, experience with software development/security testing and related tools such as HP Fortify, Accunetix, Burp Suite is preferred.
Ability to obtain industry certifications (i.e., CISSP / CISA / CISM / GIAC Web Application Penetration Tester (GWAPT) / GIAC
Intermediate Web/Mobile/Embedded Device technology knowledge (i.e., HTTP, HTML, SQL, IOS, Android)
Competent with application level security controls e.g. authorization and access control, session management, cross site scripting, command injection Flaws, buffer overflows, web application and server configurations
Strong knowledge of IT security frameworks (ISO, NIST etc.) and related processes
Energetic team player with strong initiative, team orientation and good problem solving skills.
Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner, and be able to meet assigned deadlines and service levels.
Demonstrated interpersonal skills, including the ability to listen, resolve problems, deal with unresolved issues, delays and unexpected events, and the ability to effectively communicate and maintain rapport with supported customers.
Excellent communication skills with demonstrated ability to write clear, concise business communication for multiple levels (management, technical, user).
Able to understand and leverage the IT and business vision and strategy to support solution definition
Able to professionally represent the Security function to key business stakeholders
Ability to work in a highly matrixed and geographically diverse business environment.
Ability to work within a team and as an individual contributor in a fast-paced, changing environment.
Ability to leverage and/or engage others to accomplish projects.
Ability to travel approximately 10%, including internationally.
Ability to maintain regular and predictable attendance.
IT Business Relationship Management
ASJM Abbott St. Jude Medical
United States > Minnesota : One Lillehei Plaza
SIGNIFICANT WORK ACTIVITIES:
Continuous sitting for prolonged periods (more than 2 consecutive hours in an 8 hour day), Keyboard use (greater or equal to 50% of the workday)
Abbott is an Equal Opportunity Employer of Minorities/Women/Individuals with Disabilities/Protected Veterans.
EEO is the Law link - English: http://webstorage.abbott.com/common/External/EEO_English.pdf
EEO is the Law link - Espanol: http://webstorage.abbott.com/common/External/EEO_Spanish.pdf
Abbott is about the power of health. For more than 125 years, Abbott has been helping people reach their potential — because better health allows people and communities to achieve more. With a diverse, global network serving customers in more than 150 countries, we create new solutions — across the spectrum of health, around the world, for all stages of life. Whether it’s next-generation diagnostics, life-changing devices, science-based nutrition, or novel reformulations, we are advancing some of the most innovative and revolutionary technologies in healthcare, helping people live their best lives through better health.
The people of Abbott come to work each day with relentless energy, enthusiasm and a promise to enhance the health and well-being of millions of people. They push the boundaries to help manage and treat some of life’s greatest health challenges.
We invite you to explore opportunities at Abbott , to see if your talents and career aspirations may fit with our openings. An equal opportunity employer, Abbott welcomes and encourages diversity in our workforce.
Facebook at https://www.facebook.com/AbbottCareers
LinkedIn at https://www.linkedin.com/company/abbott-
YouTube at https://www.youtube.com/c/abbott
Twitter at https://twitter.com/AbbottNews