Senior Cybersecurity Specialist

The Cybersecurity Specialist plays a critical role in protecting the organization’s digital assets, systems, and infrastructure. This position involves designing secure architectures, performing risk assessments, threat modeling, implementing cybersecurity controls, and ensuring compliance with industry standards and regulatory requirements across Abbott Nutrition. The Specialist will work cross-functionally with IT, Engineering, Operations, and Compliance teams to maintain a robust cybersecurity posture across manufacturing environments.

• Conduct cybersecurity risk assessments for software, systems, and network infrastructure.
• Perform threat modeling using tools such as STRIDE.
• Conduct and support vulnerability assessments and penetration testing.
• Ensure compliance with relevant standards and regulations (e.g., ISO 27001, NIST SP 800-82, FDA, HIPAA, GDPR, PCI DSS, etc).
• Monitor and interpret changes in global cybersecurity regulations and standards, integrating them into Abbott Nutrition policies and procedures.
• Support internal and external audits, including remediation coordination at Abbott Nutrition sites.

• Collaborate with engineering and development teams to design secure system architectures.
• Experience with secure coding practices and encryption technologies.
• Guide teams in applying cybersecurity controls throughout the software development lifecycle (SDLC).

• Monitor cybersecurity threats and develop mitigation strategies.
• Respond to and investigate cybersecurity incidents, identifying root causes and recovery actions.
• Utilize and manage security technologies including:
  • Firewalls
  • Intrusion Detection/Prevention Systems (IDS/IPS)
  • Endpoint protection
  • Data Loss Prevention (DLP)
  • SIEM systems
  • Log aggregation tools
• Support the deployment and operational use of Governance, Risk, and Compliance (GRC) platforms.
• Work with cross-functional teams (e.g., Engineering, QA, IT) and vendors to document and implement cybersecurity controls to achieve program requirements while enabling business outcomes.
• Subject Matter Expertise on security projects to ensure the timely, on-budget, and effective implementation of cyber security improvements that are operationally supported with validation methods in place to measure effectiveness.

• Bachelor’s Degree in Computer Science, Engineering, Information Security, or related field.
• 5+ years of experience in cybersecurity, preferably in regulated industries such as food, beverage, healthcare, or medical devices.
• Experience with cloud security, network protocols (SSL/TLS, VPNs, IPsec), and secure cloud-based applications.
• Familiarity with regulatory compliance (SOX, HIPAA, GDPR, FDA cybersecurity guidance).
• Proficiency in threat modeling, risk management, vulnerability management, and incident response.
• Experience securing both software and hardware systems in manufacturing environments.
• Strong understanding of cybersecurity frameworks (ISO 27001, NIST, SOC 2, HITRUST, NIST SP 800-82).

• CISSP, CISM, or equivalent certification preferred.