Senior Cybersecurity Engineer - Security Operations and Threat Management

Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 114,000 colleagues serve people in more than 160 countries.

Working at Abbott

At Abbott, you can do work that matters, grow, and learn, care for yourself and your family, be your true self, and live a full life. You'll also have access to :

• Career development with an international company where you can grow the career you dream of.
• Employees can qualify for free medical coverage in our Health Investment Plan (HIP) PPO medical plan in the next calendar year.
• An excellent retirement savings plan with a high employer contribution.
• Tuition reimbursement, the Freedom 2 Save student debt program, and FreeU education benefit - an affordable and convenient path to getting a bachelor's degree.
• A company recognized as a great place to work in dozens of countries worldwide and named one of the most admired companies in the world by Fortune.
• A company that is recognized as one of the best big companies to work for as well as the best place to work for diversity, working mothers, female executives, and scientists.

The Opportunity

Abbott is actively seeking a Senior Cybersecurity Security Operations & Threat

Management Engineer to join the team developing Lingo, their continuous glucose monitoring (CGM) product designed for general wellness use. Lingo, a biowearable technology developed by Abbott, provides continuous glucose monitoring and personalized coaching to help users understand their glucose responses and build healthier habits. It was recently recognized as one of Fast Company's Next Big Things in Tech 2024. Lingo aims to transform traditional healthcare into a proactive, user-empowering experience, making metabolic health accessible and understandable.

This position focuses on enhancing Lingo's cybersecurity program through automation and the creation of robust technical controls.

The Senior Cybersecurity Engineer develops and maintains Security Operations & Threat Management procedures-including signal handling, threat intelligence, incident response, and disaster recovery-while ensuring regulatory compliance and assisting stakeholders with regulatory insights. The Senior Cybersecurity Engineer position can work remotely in the U.S.

What You'll Work On

1. Lead the development and improvement of Security Operations processes,

including creating / modifying Standard Operating Procedures (SOPs), Playbooks, and Standards.

2. Leverage security technologies and tools, such as SIEM, SOAR, and Cyber Threat Intelligence (CTI) tools to monitor and analyze security logs to identify potential cyber threats and vulnerabilities across Lingo's ecosystem.

3. Develop metrics to measure the effectiveness of SIEM efforts and provide timely and accurate reports on the status of cybersecurity measures.

4. Collaborate with cross-functional teams to establish cybersecurity event reporting and disclosure processes, ensuring security is embedded across the organization.

5. Support the advancement of Lingo's cyber threat intelligence to ensure consistent detection, analysis, response, and monitoring of cybersecurity threats, events, and incidents.

6. Develop and maintain incident response plans, playbooks, and documentation to support the Cybersecurity function.

7. Perform assessment of cybersecurity incidents to identify the root cause, respond, and recover the environment.

8. Develop threat detections using frameworks such as MITRE ATT&CK, MITRE SHIELD, Cyber Kill Chain, Diamond Model, NIST CSF, OWASP Top Ten, Unified Kill Chain, etc.

9. Collaborate across teams to align security goals with technical requirements and support implementation of security projects.

10. Continuously monitor and analyze security signals from various sources, prioritize and triage alerts based on risk and impact.

11. Stay abreast of industry trends and emerging technologies to recommend security enhancements and strengthen Lingo's cybersecurity posture against evolving threats and compliance requirements.

12. Develop and deploy threat detections using intelligence, hunting, and incident response insights; conduct threat analysis and malware triage to support investigations and response efforts.

13. Support the design and execution of executive-level tabletop exercises and track remediation efforts to strengthen incident preparedness.

14. Participate in conducting regular training and awareness programs for Lingo's employees to promote a culture of cybersecurity awareness and compliance.

Summary of Key Focus Areas :

1. Lead, design, implement, and optimize SIEM solutions.

2. Ensure comprehensive log source integration and data quality.

3. Develop and tune correlation rules, dashboards, and alerts.

4. Collaborate with cross-functional teams to establish cybersecurity event reporting.

5. Support the advancement of Lingo's cyber threat intelligence.

6. Maintain and improve incident response playbooks and escalation procedures.

7. Conduct post-incident reviews and root cause analyses.

8. Develop threat detections using attack and defense frameworks.

9. Collaborate with teams to align security goals / projects with technical requirements.

10. Monitor and analyze security signals from various sources.

11. Assist with tracking emerging threats and vulnerabilities across Lingo's landscape.

12. Prioritize and triage alerts based on risk and impact.

13. Collaborate on disaster recovery planning and conduct regular tabletop exercises and simulations to validate preparedness and response capabilities.

14. Embed cybersecurity into business continuity strategies and organizational culture.

Required Qualifications :

Bachelor's degree in Cybersecurity, Computer Science, Engineering, Information Technology or threat and risk management related disciplines

5+ years of experience in cybersecurity operations, incident response, or related field

Strong hands-on experience with SIEM platforms (e.g., Splunk, Sentinel, QRadar)

Familiarity with MITRE ATT&CK framework, NIST, and other cybersecurity standards

Excellent analytical, communication, problem-solving skills and interpersonal skills

Up-to-date understanding of a wide range of incident response, system

configuration, vulnerability management and hardening guidelines.

Understanding of ISO 27001, HITRUST CSF and NIST cybersecurity frameworks.

Strong understanding of security concepts and best practices

Ability to work effectively in a team environment

Preferred Qualifications :

Relevant certifications (e.g., CISSP, CSSLP, CEH, GCIA, GCIH)

Learn more about our health and wellness benefits, which provide the security to help you and your family live full lives :

Follow your career aspirations to Abbott for diverse opportunities with a company that can help you build your future and live your best life. Abbott is an Equal Opportunity Employer, committed to employee diversity.

Connect with us at , on Facebook at , and on Twitter @AbbottNews.

The base pay for this position is $85,300.00 - $170,700.00. In specific locations, the pay range may vary from the range posted.