Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 114,000 colleagues serve people in more than 160 countries.

At Abbott, you can do work that matters, grow, and learn, care for yourself and family, be your true self and live a full life. You’ll also have access to:

• Career development with an international company where you can grow the career you dream of.
• Employees can qualify for free medical coverage in our Health Investment Plan (HIP) PPO medical plan in the next calendar year.
• An excellent retirement savings plan with high employer contribution
• Tuition reimbursement, the Freedom 2 Save student debt program and FreeU education benefit - an affordable and convenient path to getting a bachelor’s degree.
• A company recognized as a great place to work in dozens of countries around the world and named one of the most admired companies in the world by Fortune.
• A company that is recognized as one of the best big companies to work for as well as a best place to work for diversity, working mothers, female executives, and scientists.

THE OPPORTUNITY

This role is based out of our St Paul, MN location. This is an onsite role not an remote opportunity..
We’re looking for an experienced security professional who can apply their experience toward medical device cyber security.
Responsible for providing technical direction on security strategy and technology to build safe, secure products. Senior Architect Product Security will help build and maintain the product security program and support product security risk assessments, security testing, certifications, security event handling, metrics & monitoring, external communications and education and training for Medical Device division.

QUALIFICATIONS:

• BA/BS degree in Computer Science, MIS, Information Assurance, or related field, or equivalent years of related experience
• 10+ years Information Technology experience
• 5+ years of work experience in an information security role evaluating and implementing IT security processes i.e. engineering or architecture and preferably in a large enterprise environment
• Energetic team player with strong initiative, team orientation and good problem solving skills
• Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner, and be able to meet assigned deadlines and service levels
• Demonstrated interpersonal skills, including the ability to listen, resolve problems, deal with unresolved issues, delays and unexpected events, and the ability to effectively communicate and maintain rapport with supported customers
• Excellent communication skills with demonstrated ability to write clear, concise business communication for multiple levels (management, technical, user)
• Able to understand and leverage the IT and business vision and strategy to support solution definition
• Able to professionally represent the Information Security function to key business stakeholders
• Ability to work in a highly matrixed and geographically diverse business environment.
• Ability to work within a team and as an individual contributor in a fast-paced, changing environment.
• Ability to leverage and/or engage others to accomplish projects.
• Strong verbal and written communications with ability to effectively communicate at multiple levels in the organization.
• Multitasks, prioritizes and meets deadlines in timely manner.
• Strong organizational and follow-up skills, as well as attention to detail.
• Ability to travel approximately 20%, including internationally.
• Ability to maintain regular and predictable attendance.

• Provides information security expertise and assists in incorporating control measures into new and existing projects around medical device security
• Develops and maintains technical expertise pertaining to cyber security and effectively transfers knowledge to applicable stakeholders within the organization, including quality, regulatory and R&D team members
• Participates in the development and integration of the cyber security program across the medical device division, including processes regarding the implementation of security mitigations, responding to security incidents, and the consistent handling of security events
• Assists with performing risk assessments of existing and new Abbott medical devices
• Anticipates business and industry regulatory issues to provide recommendations and solutions to potential issues or vulnerabilities
• Manages and monitors security remediation efforts to successful completion
• Works closely with internal business partners to incorporate security mitigations into new implementation during planning phases while driving a continued focus on efficiency
• Works with legal and other regulatory and compliance groups to ensure the company is compliant with key laws, regulations, and certifications
• Develops effective training programs to provide continuous education to impacted groups on the topics of medical device cyber security
• Develops and effectively executes project plans, work breakdown structure and task dependencies, communication plans, etc. as needed
• Complies with U.S. Food and Drug Administration (FDA) regulations, other regulatory requirements, Company policies, operating procedures, processes, and task assignments.
• Maintains positive and cooperative communications and collaboration with all levels of employees, customers, contractors, and vendors.
• Performs other related duties and responsibilities, on occasion, as assigned.