Abbott
Senior Cybersecurity Engineer—Security Operations/Threat Management
Abbott, Chicago, Illinois, United States
Overview
Abbott is a global healthcare leader with a broad portfolio spanning diagnostics, medical devices, nutritionals and branded generic medicines. The company employs around 114,000 colleagues in more than 160 countries. The Senior Cybersecurity Engineer focuses on Security Operations and Threat Management to enhance Abbott's Lingo CGM product’s cybersecurity program, building robust technical controls and automation while maintaining regulatory compliance. This role can work remotely in the U.S. The Opportunity
Join the team developing Lingo, Abbott’s continuous glucose monitoring product designed for general wellness. Lingo is a biowearable technology that provides CGM data and personalized coaching to help users manage metabolic health. This position emphasizes automation, threat detection, incident response, and security program maturation. What You’ll Work On Lead the development and improvement of Security Operations processes, including creating/modifying SOPs, Playbooks, and Standards.
Leverage security technologies (SIEM, SOAR, CTI tools) to monitor logs, identify threats, and assess vulnerabilities across Lingo’s ecosystem.
Develop metrics to measure SIEM effectiveness and provide status reports on cybersecurity measures.
Collaborate with cross-functional teams to embed cybersecurity event reporting and disclosure processes.
Advance Lingo’s cyber threat intelligence to ensure consistent detection, analysis, response, and monitoring of threats, events, and incidents.
Develop and maintain incident response plans, playbooks, and documentation to support the Cybersecurity function.
Assess cybersecurity incidents to identify root causes, respond, and recover environments.
Develop threat detections using frameworks such as MITRE ATT&CK, MITRE SHIELD, Cyber Kill Chain, Diamond Model, NIST CSF, OWASP Top Ten, Unified Kill Chain, etc.
Collaborate across teams to align security goals with technical requirements and support security projects.
Continuously monitor and analyze security signals, triage alerts based on risk and impact.
Stay current on industry trends to recommend security enhancements and strengthen the posture against evolving threats and compliance requirements.
Develop and deploy threat detections using intelligence, hunting, and incident response insights; conduct threat analysis and malware triage.
Support executive-level tabletop exercises and track remediation efforts to strengthen incident preparedness.
Participate in regular training and awareness programs to promote cybersecurity culture and compliance.
Summary Of Key Focus Areas Lead, design, implement, and optimize SIEM solutions.
Ensure comprehensive log source integration and data quality.
Develop and tune correlation rules, dashboards, and alerts.
Collaborate to establish cybersecurity event reporting and threat intelligence.
Maintain and improve incident response playbooks and escalation procedures.
Conduct post-incident reviews and root cause analyses.
Develop threat detections using relevant frameworks.
Align security goals with technical requirements across projects.
Monitor and analyze security signals; track emerging threats and vulnerabilities.
Participate in disaster recovery planning and tabletop exercises.
Embed cybersecurity into business continuity and organizational culture.
Required Qualifications Bachelor’s degree in Cybersecurity, Computer Science, Engineering, Information Technology or related disciplines.
5+ years of experience in cybersecurity operations, incident response, or related field.
Hands-on experience with SIEM platforms (e.g., Splunk, Microsoft Sentinel, IBM QRadar).
Familiarity with MITRE ATT&CK, NIST and other cybersecurity standards.
Strong analytical, communication, problem-solving, and interpersonal skills.
Up-to-date understanding of incident response, system configuration, vulnerability management, and hardening guidelines.
Understanding of ISO 27001, HITRUST CSF and NIST cybersecurity frameworks.
Ability to work effectively in a team environment.
Preferred Qualifications Relevant certifications (e.g., CISSP, CSSLP, CEH, GCIA, GCIH).
Benefits and Compliance
Learn more about Abbott’s health and wellness benefits and the security they provide to you and your family: abbottbenefits.com. Abbott is an Equal Opportunity Employer committed to employee diversity. For more information about Abbott, visit www.abbott.com. Connect with us on social media: Facebook (www.facebook.com/Abbott) and Twitter (@AbbottNews).
#J-18808-Ljbffr
Abbott is a global healthcare leader with a broad portfolio spanning diagnostics, medical devices, nutritionals and branded generic medicines. The company employs around 114,000 colleagues in more than 160 countries. The Senior Cybersecurity Engineer focuses on Security Operations and Threat Management to enhance Abbott's Lingo CGM product’s cybersecurity program, building robust technical controls and automation while maintaining regulatory compliance. This role can work remotely in the U.S. The Opportunity
Join the team developing Lingo, Abbott’s continuous glucose monitoring product designed for general wellness. Lingo is a biowearable technology that provides CGM data and personalized coaching to help users manage metabolic health. This position emphasizes automation, threat detection, incident response, and security program maturation. What You’ll Work On Lead the development and improvement of Security Operations processes, including creating/modifying SOPs, Playbooks, and Standards.
Leverage security technologies (SIEM, SOAR, CTI tools) to monitor logs, identify threats, and assess vulnerabilities across Lingo’s ecosystem.
Develop metrics to measure SIEM effectiveness and provide status reports on cybersecurity measures.
Collaborate with cross-functional teams to embed cybersecurity event reporting and disclosure processes.
Advance Lingo’s cyber threat intelligence to ensure consistent detection, analysis, response, and monitoring of threats, events, and incidents.
Develop and maintain incident response plans, playbooks, and documentation to support the Cybersecurity function.
Assess cybersecurity incidents to identify root causes, respond, and recover environments.
Develop threat detections using frameworks such as MITRE ATT&CK, MITRE SHIELD, Cyber Kill Chain, Diamond Model, NIST CSF, OWASP Top Ten, Unified Kill Chain, etc.
Collaborate across teams to align security goals with technical requirements and support security projects.
Continuously monitor and analyze security signals, triage alerts based on risk and impact.
Stay current on industry trends to recommend security enhancements and strengthen the posture against evolving threats and compliance requirements.
Develop and deploy threat detections using intelligence, hunting, and incident response insights; conduct threat analysis and malware triage.
Support executive-level tabletop exercises and track remediation efforts to strengthen incident preparedness.
Participate in regular training and awareness programs to promote cybersecurity culture and compliance.
Summary Of Key Focus Areas Lead, design, implement, and optimize SIEM solutions.
Ensure comprehensive log source integration and data quality.
Develop and tune correlation rules, dashboards, and alerts.
Collaborate to establish cybersecurity event reporting and threat intelligence.
Maintain and improve incident response playbooks and escalation procedures.
Conduct post-incident reviews and root cause analyses.
Develop threat detections using relevant frameworks.
Align security goals with technical requirements across projects.
Monitor and analyze security signals; track emerging threats and vulnerabilities.
Participate in disaster recovery planning and tabletop exercises.
Embed cybersecurity into business continuity and organizational culture.
Required Qualifications Bachelor’s degree in Cybersecurity, Computer Science, Engineering, Information Technology or related disciplines.
5+ years of experience in cybersecurity operations, incident response, or related field.
Hands-on experience with SIEM platforms (e.g., Splunk, Microsoft Sentinel, IBM QRadar).
Familiarity with MITRE ATT&CK, NIST and other cybersecurity standards.
Strong analytical, communication, problem-solving, and interpersonal skills.
Up-to-date understanding of incident response, system configuration, vulnerability management, and hardening guidelines.
Understanding of ISO 27001, HITRUST CSF and NIST cybersecurity frameworks.
Ability to work effectively in a team environment.
Preferred Qualifications Relevant certifications (e.g., CISSP, CSSLP, CEH, GCIA, GCIH).
Benefits and Compliance
Learn more about Abbott’s health and wellness benefits and the security they provide to you and your family: abbottbenefits.com. Abbott is an Equal Opportunity Employer committed to employee diversity. For more information about Abbott, visit www.abbott.com. Connect with us on social media: Facebook (www.facebook.com/Abbott) and Twitter (@AbbottNews).
#J-18808-Ljbffr