Security Engineer – Cybersecurity Posture, Hygiene & AI Enablement

This is a fully remote position, open to applicants in Illinois.

📋 Description

• Design, develop, and implement security controls and solutions that enhance AbbVie’s security hygiene.

• Ensure the effective integration of security measures into IT systems and applications.

• Collaborate with IT, network, and other relevant departments to align security measures with organizational goals and compliance requirements.

• Partner with platform and application teams to establish clear security baseline requirements, adhering to the Center for Internet Security Critical Security Controls (CIS 18).

• Utilize existing enterprise tools dedicated to vulnerability management, asset inventory, and cyber hygiene to ensure all assets comply with established security baseline requirements.

• Develop custom integrations using APIs or other scripting tools for high-risk applications to enable proactive monitoring of critical security controls.

• Demonstrate a foundational understanding of how artificial intelligence (AI) and machine learning technologies operate, including their strengths, limitations, and common enterprise use cases, particularly in relation to cybersecurity.

• Leverage AI-enabled tools and capabilities to enhance security posture and hygiene outcomes, such as improving visibility, identifying configuration drift, prioritizing risk, or accelerating analysis and decision-making.

• Lead posture and hygiene initiatives to effectively drive and complete projects successfully. This involves coordinating stakeholders, setting clear objectives, and maintaining a sustained focus on enhancing the organization’s security posture.

• Manage documentation such as baselines, Standard Operating Procedures (SOPs), policies, and work instructions in accordance with AbbVie requirements, ensuring accuracy, currency, and alignment with organizational standards.

⛳️ Requirements

• Bachelor’s degree in a relevant field and a minimum of 5 years of relevant experience OR a Master’s degree in a relevant field with at least 4 years of experience.

• Possess a strong understanding of the Center for Internet Security Critical Security Controls, specifically the CIS 18 framework.

• Strong working knowledge in configuring common operating systems, including Windows Servers, Windows Desktops, and Red Hat Linux, among others.

• Proficient in scripting languages, including Python, Bash, and/or PowerShell.

• Excellent written and oral communication skills.

• Strong problem-solving and analytical skills, with the capability to identify security risks and propose effective solutions.

• Strong interpersonal skills, with the ability to collaborate effectively with IT stakeholders both within and outside of the organization.

• Understand and adhere to corporate standards regarding applicable Corporate and Divisional Policies, including the Code of Conduct, safety, GxP compliance, data security, and the software development lifecycle.

🏝️ Benefits

• Paid time off (vacation, holidays, sick).

• Medical/dental/vision insurance.

• 401(k) for eligible employees.

• Short-term incentive programs.