Lead Application Security Analyst
AbbVie
- North Chicago, IL
- Permanent
- Full-time
- Establish and maintain strong relationships with IT and Business group leaders to understand goals, programs and plans. Evaluate and articulate program security requirements; identify potential security risk factors and business impact.
- Engage AbbVie Third Party Vendors to assess security posture, remediation requirements and compensating controls as they apply to Business Programs.
- Develop in-depth knowledge of AbbVie Information Security policies, processes and procedures, as well as compliance processes and intiatives in order to provide subject matter expertise and guidance to other organizations (Commercial, R&D, Audit, Legal, Purchasing, etc) within AbbVie in these matters.
- Provide Information Security expertise and guidance to Business group leaders and IT Owners to ensure an appropriate balance between security risks and business enablement for identified business programs and initiatives.
- Act as central point of contact with regard to Information Security matters and AbbVie security policies for AbbVie Purchasing, Legal/Privacy and Quality during the supplier evaluation and contract negotiation process.
- Review current technology and information policies and practices for continued applicability with respect to AbbVie commercial and R&D business programs. Provide recommendations for improvements.
- Bachelors Degree and 6 years experience OR Masters Degree and 5 years experience OR PHD and 0 years experience in Information Security or Information Technology and/or Risk Management.
- Certified Information Systems Security Professional (CISSP) or other equivalent certifications preferred.
- Strong experience and up to date knowledge in Open Systems, Windows, Mobility, Internet and network security products and platforms, including user authorization, encryption tools and techniques, communication protocols, vulnerability assessments, data loss and penetration testing, and secure coding.
- Mix of IT operations and business program experience required.
- Demonstrated skills in project management, collaboration, communication and organizational skills required.
- Information Security Consulting background and experience preferred.
- Strong written and verbal communication skills are critical.
- Adept at communicating concepts to diverse audiences with varying skill sets.
For anyone who wants to use technology and data to make a difference in people's lives, shape the digital transformation of a leading biopharmaceutical company, and secure sustainable career growth within a diverse, global team: we're ready for you.Additional InformationApplicable only to applicants applying to a position in any location with pay disclosure requirements under state or local law:
- The compensation range described below is the range of possible base pay compensation that the Company believes in good faith it will pay for this role at the time of this posting based on the job grade for this position. Individual compensation paid within this range will depend on many factors including geographic location, and we may ultimately pay more or less than the posted range. This range may be modified in the future.
- We offer a comprehensive package of benefits including paid time off (vacation, holidays, sick), medical/dental/vision insurance and 401(k) to eligible employees.
- This job is eligible to participate in our short-term incentive programs.