What AbbVie Has to Offer: Our work can—and does—have a tangible, lasting impact on millions of people. But it’s not just the results that matter. How we achieve them matters, too. Leading with purpose, we work to build a more sustainable future for generations to come. We do that by putting our expertise, resources and talent to work to make a real difference for patients, communities and our world.
Job Details
AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas – immunology, oncology, neuroscience, and eye care – and products and services in our Allergan Aesthetics portfolio. For more information about AbbVie, please visit us at www.abbvie.com. Follow @abbvie on X, Facebook, Instagram, YouTube, LinkedIn and Tik Tok.
AbbVie is seeking a talented Senior Cyber Threat Researcher to join and provide strategic leadership within our Cyber Threat Intelligence (CTI) team. AbbVie’s CTI team is responsible for anticipating and understanding the evolving cyber threat landscape. Whether identifying emerging threats, discerning trends in adversary behavior, or collaborating with industry peers, we directly influence the organization’s security strategy by providing actionable, context-rich intelligence to decision-makers across all business units.
This position can be remote anywhere in the U.S.
AbbVie’s Senior Cyber Threat Researcher is an advanced member of the Cyber Threat Intelligence (CTI) team, specializing in intelligence analysis and threat research. The role involves producing actionable intelligence products, conducting deep research on threat actors and campaigns, and delivering briefings to various audiences, including technical and executive stakeholders. In addition to core analysis responsibilities, the position oversees the growth and structure of related cyber security services, particularly the threat hunting service. This includes providing guidance and mentorship to hunters, influencing methodologies, and ensuring intelligence is effectively used to prioritize and support hunt activities. The role collaborates across multiple teams and helps connect intelligence insights to detection and response actions. Qualified candidates have a strong background in cyber security disciplines and are comfortable leading, advising, and communicating across business and technical units.
Responsibilities:
Discover, collect, analyze, and model cyber intrusion campaigns using internal security data, case investigations, and sourced intelligence.
Research, produce, and deliver finished intelligence products and threat briefings to diverse audiences—including technical teams, business units, and senior executives—to inform tactical operations and strategic security planning.
Develop and enhance capabilities for understanding adversary tools, tactics, and evolving infrastructure.
Provide direct oversight, ownership, and continual maturation of the threat hunting service: Develop service methodologies, set execution standards, and provide guidance and mentorship for full-time and part-time threat hunters; drive cross-functional and crowdsourced hunt initiatives; ensure intelligence-driven prioritization of hunt activities.
Identify and recommend defensive improvements based on observations and insights from both threat intelligence and hunt activities.
Bachelor's Degree with 7 years experience; Master's Degree with 6 years experience; PhD with 2 years experience. Experience in application program development. Work experience should be in cyber security disciplines.
Strong background in cybersecurity, with significant time in cyber threat intelligence and additional experience in fields such as incident response, forensics, detection engineering, or CSIRT operations—bringing a well-rounded perspective to the role.
5+ years in roles such as Intrusion Detection, Incident Response, Cyber Threat Intelligence, or similar security disciplines.
Strong familiarity with standard threat frameworks (e.g., MITRE ATT&CK, Cyber Kill Chain), and hands-on experience analyzing adversary tactics, techniques, and procedures (TTPs).
Proficiency in creating detective content (e.g., SIEM correlation rules, Snort/YARA signatures) and supporting the deployment of these assets with technical teams.
Capable of conducting static and dynamic malware analysis, as well as interacting with outputs from common malware analysis tools.
Scripting skills (e.g., Python, PowerShell) for automation, enrichment, and analysis.
Experience analyzing event data from a variety of security controls (firewalls, IPS/IDS, endpoint/AV/EDR, network analyzers) and enterprise log management platforms, along with the ability to recognize and communicate limitations or gaps in data collection (e.g., missing or unparsed log sources).
Exceptional written and verbal communication skills; adept at condensing complex technical or threat information into actionable briefs and updates tailored for strategic, operational, and tactical audiences, including direct briefings to business unit leaders and executives.
Applicable only to applicants applying to a position in any location with pay disclosure requirements under state or local law:
The compensation range described below is the range of possible base pay compensation that the Company believes in good faith it will pay for this role at the time of this posting based on the job grade for this position. Individual compensation paid within this range will depend on many factors including geographic location, and we may ultimately pay more or less than the posted range. This range may be modified in the future.
We offer a comprehensive package of benefits including paid time off (vacation, holidays, sick), medical/dental/vision insurance and 401(k) to eligible employees.
This job is eligible to participate in our short-term incentive programs.
Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, incentive, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole and absolute discretion unless and until paid and may be modified at the Company’s sole and absolute discretion, consistent with applicable law.
AbbVie is an equal opportunity employer and is committed to operating with integrity, driving innovation, transforming lives and serving our community. Equal Opportunity Employer/Veterans/Disabled.
US & Puerto Rico only - to learn more, visit https://www.abbvie.com/join-us/equal-employment-opportunity-employer.html
US & Puerto Rico applicants seeking a reasonable accommodation, click here to learn more:
https://www.abbvie.com/join-us/reasonable-accommodations.html
Together, we break through We believe the paths we take to achieving our breakthroughs matter. At AbbVie, every one of our 50,000 employees is a... Read more