This position works out of our Lake County, Illinois, Minneapolis/St Paul, Minnesota, or Chicago, IL locations for the Business Technology Services group. The Director, Cybersecurity Architecture is responsible for working with leadership to establish and maintain the organization’s cybersecurity architecture program. The individual will work with leaders across the organization to understand both internal and external cybersecurity risks and design technology and process solutions to address these risks.
The Cybersecurity Architecture Director leads a team of subject matter experts charged with informing Abbott’s cybersecurity strategy, translating that strategy into requirements, and advising in the implementation of those requirements.
What you’ll work on
- Develop and implement a global cybersecurity architecture program and supporting operating model designed to securely enable Abbott business processes
- Understand key and emerging risks in order to set objectives and give input to cybersecurity design and standards (policy, controls, processes/procedures, and the detailed technical execution of those requirements) with the following core tenets:
- Technology agnostic, where possible
- Based on business requirements, risk profile, constraints, organizational goals
- Considering stakeholder inputs
- With the guiding lights of being comprehensive, efficient, pragmatic, and future-proof
- Drive consistent security methods across the organization in alignment with best practices and industry standards, linking these methods back to the ‘why’ they are required.
- Provide subject matter expertise and assistance to stakeholders, advising on the design of end-to-end controls implementation
- Lead and/or support (dependent on the project structure and strategy in question) continuous improvement efforts to implement best in class cybersecurity protections and solutions.
- Create resources to support direction and stance in key risk areas such as reference architectures and roadmaps, always working toward the next right step and path forward
- Lead, develop, and mentor a team of subject matter experts
- With limited time and resources, manage and appropriately prioritize multiple concurrent projects
- Drive alignment to strategic goals using a risk-based approach
Required Qualifications
- Bachelors Degree in Information Security, Risk / IT Management, Computer Science, Computer Engineering, related field, or commensurate experience
- Minimum 10-12 years of IT career experience in a similar or closely related field
- Experience in leading a team
- Strong analytical skills, business intelligence, effective communication, interpersonal skills, organizational intelligence, relationship management, the ability to make meaningful decisions based on sound judgement
- The ability to work effectively with a variety of roles from Executive Management to Analysts
- Strong understanding of risk management programs and their interactions with internal and external stakeholders
Preferred Qualifications
Certifications such as CISA, CISM, CRISC, CISSP, CPP or CFE are preferred
Knowledge of national and international regulatory and compliance frameworks such as NIST Cybersecurity Framework, ISO 27001, EU DPD, HIPAA/HITECH and/or architecture frameworks such as SABSA and/or TOGAF
Experience in medical device or life sciences industries, or other highly regulated environments
The base pay for this position is $147,300.00 – $294,700.00. In specific locations, the pay range may vary from the range posted.