Senior Cybersecurity Engineer—Security Operations / Threat Management

The Opportunity

Abbott is actively seeking a Senior Cybersecurity Security Operations & Threat

Management Engineer to join the team developing Lingo, their continuous glucose monitoring (CGM) product designed for general wellness use. Lingo, a biowearable technology developed by Abbott, provides continuous glucose monitoring and personalized coaching to help users understand their glucose responses and build healthier habits. It was recently recognized as one of Fast Company's Next Big Things in Tech 2024. Lingo aims to transform traditional healthcare into a proactive, user-empowering experience, making metabolic health accessible and understandable.

This position focuses on enhancing Lingo's cybersecurity program through automation and the creation of robust technical controls.

The Senior Cybersecurity Engineer develops and maintains Security Operations & Threat Management procedures—including signal handling, threat intelligence, incident response, and disaster recovery—while ensuring regulatory compliance and assisting stakeholders with regulatory insights. The Senior Cybersecurity Engineer position can work remotely in the U.S.

What You’ll Work On

1. Lead the development and improvement of Security Operations processes,

including creating / modifying Standard Operating Procedures (SOPs), Playbooks, and Standards.

2. Leverage security technologies and tools, such as SIEM, SOAR, and Cyber Threat Intelligence (CTI) tools to monitor and analyze security logs to identify potential cyber threats and vulnerabilities across Lingo's ecosystem.

3. Develop metrics to measure the effectiveness of SIEM efforts and provide timely and accurate reports on the status of cybersecurity measures.

4. Collaborate with cross-functional teams to establish cybersecurity event reporting and disclosure processes, ensuring security is embedded across the organization.

5. Support the advancement of Lingo's cyber threat intelligence to ensure consistent detection, analysis, response, and monitoring of cybersecurity threats, events, and incidents.

6. Develop and maintain incident response plans, playbooks, and documentation to support the Cybersecurity function.

7. Perform assessment of cybersecurity incidents to identify the root cause, respond, and recover the environment.

8. Develop threat detections using frameworks such as MITRE ATT&CK, MITRE SHIELD, Cyber Kill Chain, Diamond Model, NIST CSF, OWASP Top Ten, Unified Kill Chain, etc.

9. Collaborate across teams to align security goals with technical requirements and support implementation of security projects.

10. Continuously monitor and analyze security signals from various sources, prioritize and triage alerts based on risk and impact.

11. Stay abreast of industry trends and emerging technologies to recommend security enhancements and strengthen Lingo’s cybersecurity posture against evolving threats and compliance requirements.

12. Develop and deploy threat detections using intelligence, hunting, and incident response insights; conduct threat analysis and malware triage to support investigations and response efforts.

13. Support the design and execution of executive-level tabletop exercises and track remediation efforts to strengthen incident preparedness.

14. Participate in conducting regular training and awareness programs for Lingo's employees to promote a culture of cybersecurity awareness and compliance.

Summary of Key Focus Areas :

1. Lead, design, implement, and optimize SIEM solutions.

2. Ensure comprehensive log source integration and data quality.

3. Develop and tune correlation rules, dashboards, and alerts.

4. Collaborate with cross-functional teams to establish cybersecurity event reporting.

5. Support the advancement of Lingo's cyber threat intelligence.

6. Maintain and improve incident response playbooks and escalation procedures.

7. Conduct post-incident reviews and root cause analyses.

8. Develop threat detections using attack and defense frameworks.

9. Collaborate with teams to align security goals / projects with technical requirements.

10. Monitor and analyze security signals from various sources.

11. Assist with tracking emerging threats and vulnerabilities across Lingo’s landscape.

12. Prioritize and triage alerts based on risk and impact.

13. Collaborate on disaster recovery planning and conduct regular tabletop exercises and simulations to validate preparedness and response capabilities.

14. Embed cybersecurity into business continuity strategies and organizational culture.

Required Qualifications :

• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, Information Technology or threat and risk management related disciplines
• 5+ years of experience in cybersecurity operations, incident response, or related field
• Strong hands-on experience with SIEM platforms (e.g., Splunk, Sentinel, QRadar)
• Familiarity with MITRE ATT&CK framework, NIST, and other cybersecurity standards
• Excellent analytical, communication, problem-solving skills and interpersonal skills
• Up-to-date understanding of a wide range of incident response, system

configuration, vulnerability management and hardening guidelines.

Preferred Qualifications :