Abbott Director, Cybersecurity & Risk Management in Abbott Park, Illinois

At Abbott, we're committed to helping people live their best possible life through the power of health. For more than 125 years, we've brought new products and technologies to the world -- in nutrition, diagnostics, medical devices and branded generic pharmaceuticals -- that create more possibilities for more people at all stages of life. Today, 99,000 of us are working to help people live not just longer, but better, in the more than 150 countries we serve.

Over the past two years, Abbott has undertaken a dynamic IT transformation. The aim is to further position IT as an equal partner with other key business functions, as well as a driver of business performance and success. As such, IT leadership roles within the divisional structure are evolving. This includes cybersecurity and information risk management.

Abbott is seeking an experienced Director within the department to lead the strategy and performance of its key functions. This individual must work effectively across Abbott divisions worldwide to understand business risks unique to each division and to address the related information security risk implications in a manner that is in accordance with Abbott culture, financial constraints and resources.

Primary Job Scope:

  • Develop, implement, and manage all related governance, strategic frameworks, policies and standards throughout Abbott divisions worldwide.

  • Develop, implement, and manage Abbott’s continual Identity and Access Management strategy.

  • Lead periodic assessment of Abbott’s current state of information security risk and compliance, and issue corrective action plans to address any unauthorized exceptions or deficiencies.

  • Provide leadership as the internal subject matter expert with respect to information security risk governance and decision processes to ensure alignment with Abbott’s business model and enterprise risk strategy.

  • Maintain strong and effective working relationships with Abbott divisions worldwide.

  • Conduct research on industry leading practices for risk governance matters.


  • Establish a long-term vision and strategy for information security governance and risk management. Oversee the development of the near-term tactical implementation strategy.

  • Define the plan and agree on end-state goals for enterprise information security as well as identity and access management. Coordinate efforts with key stakeholders in relevant functions to implement the strategy.

  • Develop strategies to proactively identify, manage and mitigate identified threats and vulnerabilities to attain desired risk profile and communicate strategies to key stakeholders.

  • Responsible for compliance with applicable Corporate and Divisional policies and procedures.

  • Maintains current and in-depth knowledge of leading practices related to information security governance and risk management.

  • Utilize exceptional communication, facilitation and consensus-building skills to create support for governance and risk management initiatives and strategies.

  • Develop and foster relationships with critical stakeholders throughout Abbott divisions worldwide to effectively manage and instigate change through use of positive influence.

  • Attract and retain talent, and ensure staff development (leadership, cross-functional, technical, global perspective). Promote and foster diversity.

  • Develop talent by actively coaching, managing, and mentoring employees.


This position has the responsibility and accountability to provide leadership and oversight corporate-wide for Information Security Governance and Risk Management for Abbott divisions, which applies to all employees and contractors worldwide. The scope of this position is Abbott-wide and considers the information security implications unique to all divisions when developing governance and risk management strategies.


  • Bachelor’s degree required (advanced degree preferred) in the areas of Information Security, Risk Management, Information Technology, or related field.


  • Total combined experience of 10+ years.

  • Experience with developing Identity and Access Management strategies.

  • Experience and proven success developing enterprise-wide information security governance and risk management strategies for large commercial entities within the same or similar industry.

  • Strong analytical skills, business intelligence, effective communication, interpersonal skills, organizational intelligence, relationship management, the ability to make meaningful decisions based on sound judgement, and the ability to work effectively with a variety of roles from Executive Management to Security Analysts.

An Equal Opportunity Employer

Abbot welcomes and encourages diversity in our workforce.

We provide reasonable accommodation to qualified individuals with disabilities.

To request accommodation, please call 224-667-4913 or email