Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 114,000 colleagues serve people in more than 160 countries.
JOB DESCRIPTION:
Working at Abbott
At Abbott, you can do work that matters, grow, and learn, care for yourself and family, be your true self and live a full life. You’ll also have access to:
- Career development with an international company where you can grow the career you dream of .
- Free medical coverage for employees* via the Health Investment Plan (HIP) PPO
- An excellent retirement savings plan with high employer contribution
- Tuition reimbursement, the Freedom 2 Save student debt program and FreeU education benefit - an affordable and convenient path to getting a bachelor’s degree.
- A company recognized as a great place to work in dozens of countries around the world and named one of the most admired companies in the world by Fortune.
- A company that is recognized as one of the best big companies to work for as well as a best place to work for diversity, working mothers, female executives, and scientists.
MAIN PURPOSE OF ROLE
The Senior Specialist IT Product Security reports to the Cybersecurity Lead, and works closely with the application development and quality control teams, playing a critical role in the software development lifecycle of our web and mobile applications.
As a Senior Specialist IT Product Security, you demonstrate strong analytical, methodical problem-solving and interpersonal skills, and use these skills to design and implement security test plans and automation, and to support our software development from a security perspective.
The core responsibilities of this role include creating and maintaining modular manual and automated security test plans, executing test scripts, interpreting results, and working with engineering teams to help implement solutions.
You will establish a deep understanding of our applications’ functionality and underlying technology, allowing you to assist with defining acceptance criteria in user stories, and ensure security requirements are covered when testing these user stories.
You will also assist in creating and maintaining cybersecurity documentation, and contribute to threat modeling activities and the creation of data-flow diagrams.
MAIN RESPONSIBILITIES
- Implement clearly written manual and automated security tests for web applications and mobile applications
- Execute penetration tests against applications, interpret and document results • Identify security weaknesses in applications, specifying methods and entry points that threat actors may use to exploit vulnerabilities or weaknesses
- Work with development and QC team to define acceptance criteria, identify risks, and plan testing coverage for upcoming features/releases.
- Participate in the development and evolution of Threat Models and Data Flow Diagrams.
- Participate in application production troubleshooting and analysis.
Education Level
- Bachelors Degree (± 16 years) or equivalent work experience Computer science or technical engineering
Experience/Background
Business Experience
- Minimum of 5 years of experience with software testing, automation, and/or cybersecurity
- Minimum of 2 years of technical experience in a regulated industry • Healthcare system experience desirable.
- Experience working in an agile/scrum environment
- Comfortable and adaptable in a fast-paced and informal environment with the ability to respond and react to changing priorities quickly and efficiently
Technical Experience
- Working knowledge of software test scripting and automation
- Knowledge of the software development lifecycle, testing methodologies, and testing tools
- Knowledge of networking concepts and types of networking attacks
- Experience with penetration testing or adversarial emulation
- Familiarity with OWASP Top 10 and Common Vulnerability Enumeration (CVE) • Experience with thread modeling using STRIDE
Software and Environments
- Competent with Microsoft Office
- Familiarity with Azure Devops/Team Foundation Services
- Experience with testing tools from SmartBear and PortSwigger
- Experience with scripting languages such as Javascript, Powershell, and/or Python
- Experience working in cloud environments such as Microsoft Azure
- Familiarity Microsoft development tools (Visual Studio, MSSQL, VB.net, C#)
WHAT WE OFFER
At Abbott, you can have a good job that can grow into a great career. We offer:
- Training and career development, with onboarding programs for new employees and tuition assistance
- Financial security through competitive compensation, incentives and retirement plans
- Health care and well-being programs including medical, dental, vision, wellness and occupational health programs
- Paid time off
- 401(k) retirement savings with a generous company match
- The stability of a company with a record of strong financial performance and history of being actively involved in local communities
Learn more about our benefits that add real value to your life to help you live fully: http://www.abbottbenefits.com/pages/candidate.aspx
Follow your career aspirations to Abbott for diverse opportunities with a company that provides the growth and strength to build your future. Abbott is an Equal Opportunity Employer, committed to employee diversity. Connect with us at www.abbott.com, on Facebook at www.facebook.com/Abbott and on Twitter @AbbottNews and @AbbottGlobal.
The base pay for this position is
$83,600.00 – $167,200.00
In specific locations, the pay range may vary from the range posted.
JOB FAMILY:
Information Risk & Quality Assurance
DIVISION:
HF Heart Failure
LOCATION:
United States > Pleasanton : 5000 Franklin Dr
ADDITIONAL LOCATIONS:
United States > Livermore : 6465 National Drive
WORK SHIFT:
Standard
TRAVEL:
Yes, 5 % of the Time
MEDICAL SURVEILLANCE:
Not Applicable
SIGNIFICANT WORK ACTIVITIES:
Continuous sitting for prolonged periods (more than 2 consecutive hours in an 8 hour day), Keyboard use (greater or equal to 50% of the workday)
Abbott is an Equal Opportunity Employer of Minorities/Women/Individuals with Disabilities/Protected Veterans.
EEO is the Law link - English: http://webstorage.abbott.com/common/External/EEO_English.pdf
EEO is the Law link - Espanol: http://webstorage.abbott.com/common/External/EEO_Spanish.pdf
