Key skills
PostmaniOSAndroidJiraLeadershipCommunicationCritical Thinking
About this role
Abbott is a global healthcare leader that helps people live more fully at all stages of life. They are seeking a Senior Cybersecurity Engineer responsible for identifying security risks and executing strategies to ensure product safety and compliance with cybersecurity regulations.
Responsibilities:
- Develop and deliver cybersecurity artifacts for product software releases, including SBOMs, vulnerability remediation evidence, and release security documentation. Lead technical reviews with development teams to discuss vulnerabilities, security controls, remediation progress, and residual risk
- Prioritize vulnerability remediation and patching efforts based on business impact, proof of exploit, and policy requirements, partnering with engineering, PMs, and product owners to drive timely risk reduction
- Design and recommend systematic remediation strategies and preventive controls to reduce recurring vulnerabilities, including secure coding practices, dependency management, and configuration hardening across product and supporting applications
- Triage and analyze findings from application, network‑based, and agent‑based security scanning tools (SAST, DAST, SCA, infrastructure scanners) to determine true security impact, validate exploitability, and distinguish false positives
- Validate security fixes through hands‑on testing, including web application testing using tools such as Burp Suite and Postman, and verification of remediation for iOS and Android mobile application vulnerabilities
- Clearly communicate complex technical security concepts to executive leadership and cross‑functional stakeholders, translating vulnerability findings, security controls, and security metrics into business‑relevant risk insights and decision support
- Lead remediation efforts after security assessment findings outline weaknesses requiring attention. Support the advancement of cyber threat and vulnerability management program to ensure consistent identification, analysis, response, and monitoring of cyber security threats, events, and vulnerabilities
- Leverage JIRA for security project and vulnerability management, building dashboards, reports, and automation workflows to track remediation progress, improve visibility of security metrics, and streamline coordination across cross‑functional teams
- Participate in cross-functional team coordination to achieve defined security goals as well as meet technical requirements in support of detailed implementation plans for security projects. Provide technical advice and training about potential security risks and prevention strategies
Requirements:
- Bachelor's degree in computer and information sciences or engineering, Security Systems, or related fields
- Minimum 3 years of IT management system, cybersecurity, or other relevant experience with a strong preference for product security (i.e. – consumer facing applications and services)
- Minimum 5 years of Business experience
- Demonstrated hands‑on experience conducting web, mobile, and cloud infrastructure security testing using DAST, SAST, SCA, SBOM generation tooling, and network‑ and agent‑based vulnerability scanning tools
- Ability to prioritize multiple projects with strong organization skills. Demonstrated critical thinking, analytical skills, judgment, and logic for problem-solving and decision-making in an environment with changing priorities
- Ability to work effectively in a team environment, adapting to rapidly changing business and technological needs
- Excellent documentation, communication and interpersonal skills
- Holds or working toward one or more relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), or equivalent
- Previous work experience in a product development cybersecurity role - Familiarity with design of diagnostic equipment, medical devices, or other closely related products