Skip to main content

Search jobs

Search jobs

O firmie AbbVie

Misją AbbVie jest odkrywanie i dostarczanie innowacyjnych leków, które już dziś rozwiązują poważne problemy zdrowotne i stanowią odpowiedź na medyczne wyzwania jutra. Dążymy do wywarcia znaczącego wpływu na życie ludzi w kilku kluczowych obszarach terapeutycznych: immunologii, onkologii, neurobiologii, pielęgnacji oczu, wirusologii, zdrowia kobiet i gastroenterologii, a także w zakresie produktów i usług z portfolio Allergan Aesthetics. Aby uzyskać więcej informacji o AbbVie odwiedź nas na www.abbvie.com. Obserwuj @abbvie na portalach Twitter, Facebook, Instagram, YouTube i LinkedIn.

Information Security Architect

Waukegan, Illinois Identyfikator oferty 2209548 Kategoria Information Technology Dział AbbVie

The Information Security Architect is a member of the Information Security team and works closely with other members of the team to develop and implement a comprehensive information security program.  This includes defining security policies, processes, and standards. 

Major Duties and Responsibilities:

  • Develop plans for security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices.  Additionally, developing requirements for public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as Windows and Unix server infrastructure, messaging, end user computing devices, and software; adhering to industry standards.
  • Support security aspects of business & IT initiatives by assisting in architecture, design, implementation, deployment, and operational transition of innovative & secure technology solutions.
  • Work with information security leadership to develop strategies and plans to enforce security requirements and address identified risks in the infrastructure.
  • Research, evaluate, design, test, recommend and plan the implementation of new or updated information security technologies.
  • Establish collaborative working relations with the Information Technology functions to ensure that solutions align with security architecture and business strategy.
  • Play an advisory role in application development or acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned.  Complete remediation activities and initiate actions to ensure that compliance and security gaps are successfully addressed.
  • Evaluate security controls employed by Cloud service and other third party providers to ensure information assets are adequately protected.
  • Provides second- and third-level support and analysis during and after security incidents.  Assists security administrators and IT staff in the resolution of reported security incidents.
  • Research and assess new information security threats and recommend remedial actions.
  • Foster an information security culture through education, skill development, and implementation of effective information security processes and practices.
  • Understand and adhere to corporate standards regarding applicable Corporate and Divisional Policies, including code of conduct, safety, GxP compliance, data security, and the software development lifecycle
  • May mentor/supervise a team of one or more and guide and evaluate the performance of those individuals; is accountable for the effective performance of the team/individuals.
  • Matures and leverages relationships with affiliates, subsidiaries, vendors, and industry peers in accordance with Abbvie Values, Vendor Management Office, and Purchasing to further the mission, vision and goals of the organization.

  • 8+ years’ work experience in information security and/or related functions (such as IT Audit, Risk Management or Security Architecture).  During recent history, candidate must have demonstrated exceptional ability to assess and communicate information security concepts and practices, with both business and IT stakeholders.
  • Requires in-depth knowledge of the systems development life cycle, client area’s functions and systems, and systems applications programs development technological alternatives.
  • Proven implementation of creative technology solutions that advance the business.
  • Excellent written and oral English communication skills.

Specifically, we’re looking for:

  • Significant exposure or understanding of the following concepts, practices, and technologies: network security and perimeter security, firewalls, IDS/IPS, SIEM, workstation, mobile device, and network design standards.
  • Understanding the following concepts is a plus; identity management, federated identity services, incident management, access control, end-point protections, desktop security tools, anti-malware solutions, application vulnerability testing, public key infrastructure, Windows, and Unix/Linux.
  • Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project.
  • Signification SOX and HIPAA experience in dealing with IT general controls (ITGC), demonstrated through hands-on audit, remediation, and/or computer system validation.  Excellent understanding of current Information Security & Architecture trends and their impact on business strategies including: key Information Security vendors and solutions, audit organizations and influential market research firms.
  • Excellent communications and influencing skills with strong ability to balance differing stakeholder interests through sound analysis and persuasion.
  • Strong people skills, collaborative ability to work with IT stakeholders inside and outside of the organization, able to mentor team members with diverse backgrounds.
  • Ability to formulate network security architecture vision and translate vision into execution.
  • Thorough understanding of Information Security frameworks and good practices (e.g. ISO, NIST), and proven ability to strike a balance between an academic and pragmatic approach.

Requirements:

  • Relevant work experience is important for successful performance of this role due to the complexity of our global IT Security environment. 
  • Information security qualification such as CISSP is preferred.
  • Recent work experience in a “Big Four” focused in health care or Fortune 100 health care/life science organization is a plus.

This position is part of AbbVie’s Information Security & Risk Management (ISRM) team.  We are here to put our partners in a position to succeed. We do it by providing the knowledge, tools, and support they need to effectively use data and technology while also effectively managing risk.

Significant Work Activities: Continuous sitting for prolonged periods (more than 2 consecutive hours in an 8 hour day)
Travel: Yes, 20 % of the Time
Job Type: Experienced
Schedule: Full-time
ABBVIE

Najnowsze oferty pracy

Otrzymuj powiadomienia o nowych stanowiskach

Dołącz do naszej sieci talentów i otrzymuj wiadomości e-mail z aktualnościami i powiadomieniami o nowych stanowiskach od firmy AbbVie.

Jestem zainteresowany/-aWybierz kategorię lub lokalizację. Kliknij przycisk Dodaj, aby utworzyć powiadomienie o nowych stanowiskach.

  • Information Technology, Stany ZjednoczoneUsuń
  • Information Technology, Waukegan, Illinois, Stany ZjednoczoneUsuń

Nasze Warunki użytkowania, Polityka plików cookie i Polityka prywatności wyjaśniają, jak gromadzimy i wykorzystujemy informacje na Twój temat, a także opisują przysługujące Ci prawa. Poprzez przesłanie informacji potwierdzasz przeczytanie tych dokumentów oraz zgodę na otrzymywanie wiadomości SMS i powiadomień o nowych stanowiskach od firmy AbbVie za pośrednictwem poczty elektronicznej.

Niedawno przeglądane stanowiska

You have not viewed any jobs recently.

Phishing scam alert

As an online job seeker, you could be a target of cyber (online) thieves seeking to secure personal information from you by sending you “phishing” messages.

Please be alert to and protect yourself from phishing scams. Click here to find out how you can avoid being a victim of job phishing scams.

For Internal Candidates only - Notice of Filing of Labor Condition Application