Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 113,000 colleagues serve people in more than 160 countries.
Working at Abbott
At Abbott, you can do work that matters, grow, and learn, care for yourself and family, be your true self and live a full life. You’ll also have access to:
- Career development with an international company where you can grow the career you dream of
- Free medical coverage for employees* via the Health Investment Plan (HIP) PPO
- An excellent retirement savings plan with high employer contribution
- Tuition reimbursement, the Freedom 2 Save student debt program and FreeU education benefit - an affordable and convenient path to getting a bachelor’s degree
- A company recognized as a great place to work in dozens of countries around the world and named one of the most admired companies in the world by Fortune
- A company that is recognized as one of the best big companies to work for as well as a best place to work for diversity, working mothers, female executives, and scientists
The Opportunity
This position works out of our Lake County, Illinois, Minneapolis/St Paul, Minnesota, or Chicago, IL locations for the Business Technology Services group. The Director, Cybersecurity Controls and Oversight
is responsible for working with leadership to maintain and improve the company’s approach to apply and adhere to controls and protections. The Director, Cybersecurity Controls and Oversight leads a team of subject matter experts charged with verifying and driving the effectiveness of Abbott’s cybersecurity requirements.
What you’ll work on
- Support a large GRC transformation project, driving the compliance oversight strategy forward, rollout of the refreshed processes in updated tooling.
- Continuously oversee and lead both operational excellence and improvements in existing programs, including issues management, security exceptions, and tailored compliance assessments (PCI, SOx, SWIFT, ISO27001). These programs and processes must drive to timely remediation of any improvements noted via process, leadership dashboards, and other mechanisms.
- Design and direct robust processes to drive additions to second line of defense and oversight mechanisms for controls via new GRC functionality, including implementation of:
- Control attestations
- Testing procedures
- Indicators
- Automation of controls oversight
- Serve as audit liaison to various internal and external audit stakeholder groups, helping support the teams in understanding the complex business environment.
- Provide subject matter expertise and assistance to stakeholders, advising on the most effective and efficient controls application strategy
- Effectively communicate risk-related concepts to stakeholders, with the ability to simplify the complex.
- Attract and retain talent, and ensure staff development (leadership, cross-functional, technical, global perspective).
- Manage an operating budget and project spend with financial discipline.
- Establish and maintain a resource model that can flex as needed to support controls testing rollouts and/or special initiatives.
- Build and maintain relationships necessary for the successful execution of the cybersecurity controls, compliance, and oversight program.
Required Qualifications
- Bachelors Degree in Information Security, Risk / IT Management, Computer Science, Computer Engineering, related field, or commensurate experience
- Minimum 10-12 years of experience in governance, risk, or compliance
- Experience in leading a team
- Strong analytical skills, business intelligence, effective communication, interpersonal skills, organizational intelligence, relationship management, the ability to make meaningful decisions based on sound judgement
- The ability to work effectively with a variety of roles from Executive Management to Analysts
- Strong understanding of risk management programs and their interactions with internal and external stakeholders
Preferred Qualifications
Certifications such as CISA, CISM, CRISC, CISSP are preferred Knowledge of national and international regulatory and compliance frameworks such as NIST Cybersecurity Framework, ISO 27001, EU DPD, HIPAA/HITECH Experience in medical device or life sciences industries, or other highly regulated environments
* Participants who complete a short wellness assessment qualify for FREE coverage in our HIP PPO medical plan. Free coverage applies in the next calendar year.
Learn more about our health and wellness benefits, which provide the security to help you and your family live full lives: www.abbottbenefits.com
Follow your career aspirations to Abbott for diverse opportunities with a company that can help you build your future and live your best life. Abbott is an Equal Opportunity Employer, committed to employee diversity.
Connect with us at www.abbott.com, on Facebook at www.facebook.com/Abbott and on Twitter @AbbottNews and @AbbottGlobal
The base pay for this position is $147,300.00 – $294,700.00. In specific locations, the pay range may vary from the range posted.