What AbbVie Has to Offer: Our work can—and does—have a tangible, lasting impact on millions of people. But it’s not just the results that matter. How we achieve them matters, too. Leading with purpose, we work to build a more sustainable future for generations to come. We do that by putting our expertise, resources and talent to work to make a real difference for patients, communities and our world.
Job Details
AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas – immunology, oncology, neuroscience, and eye care – and products and services in our Allergan Aesthetics portfolio. For more information about AbbVie, please visit us at www.abbvie.com. Follow @abbvie on X, Facebook, Instagram, YouTube, LinkedIn and Tik Tok.
As a member of the Information Security Risk Management architecture team, the Cloud Security Engineer plays a crucial role in shaping and guiding the organization's security strategy, architecture, and practices, with a focus on cloud computing technology. The Cloud Security Engineer will collaborate with security architects and cloud engineers to design, execute, and govern a comprehensive cloud environment.
This role can be virtual anywhere in the U.S.
Responsibilities
Serve as a cloud security technical expert to develop and execute cloud security policies and procedures
Collaborate with cloud technology teams across the enterprise to ensure the integrity and security of our digital assets in AWS/Azure IaaS environments
Demonstrate high proficiency across a wide range of cloud security technologies to establish guardrails to prevent or automatically remediate common security misconfigurations
Provide technical leadership, mentor, and consult with less experienced cloud engineers to implement necessary security controls and threat protection
Act as a Cloud security subject matter expert by continually reviewing environments for opportunities to reduce risk when possible
Build automation to monitor cloud resources for compliance with existing standards and alert for configuration drift
Consult with cloud engineers to successfully implement design requirements from cloud security architects
Provide governance and consulting to ensure established controls remain effective
Contribute to advancement of own function by studying start-of-the-art tools, techniques, and computing equipment; participate in educational opportunities and professional organizations.
Highly autonomous and productive in performing activities, requiring only minimal direction from or interaction with supervisor
Excellent communication and influencing skills with the ability to balance differing stakeholder interests through sound analysis and persuasion
Understand and adhere to corporate standards regarding applicable Corporate and Divisional Policies, including code of conduct, safety, GxP compliance, data security, and the software development cycle
Bachelor’s Degree with 6 years’ experience; Master’s degree with 5 years’ experience; PhD with 0 years’ experience in information security and/or related functions (IT Audit, Risk Management, or Security Architecture)
Strong knowledge of scripting languages, including Python, Bash, and/or PowerShell
Experience developing AWS Service and Resource Control Policies (SCP and RCP) to effectively manage permissions across the enterprise
Expertise in AWS services including EC2, S3, RDS, Lambda, CloudFormation, VPC, and IAM.
Experience with Infrastructure as Code (IaC) tools including CloudFormation, Terraform, or Ansible.
Knowledge of DevOps practices and tools, including CI/CD pipelines, automation tools, and Docker/Kubernetes for containerization
Excellent written and oral communication skills
Strong problem-solving and analytical skills with the ability to identify security risks and propose effective solutions
Professional cybersecurity and relevant industry certifications (CISSP, AWS Solution Architect, AWS Security, CSA CCSK, SANS GCLD, etc.) are highly desirable
Applicable only to applicants applying to a position in any location with pay disclosure requirements under state or local law:
The compensation range described below is the range of possible base pay compensation that the Company believes in good faith it will pay for this role at the time ofthis posting based on the job grade for this position. Individual compensation paid within this range will depend on many factors including geographic location,and we may ultimately pay more or less than the posted range. This range may be modified in the future.
We offer a comprehensive package of benefits including paid time off (vacation, holidays, sick), medical/dental/vision insurance and 401(k) to eligible employees.
This job is eligible to participate in our short-term incentive programs.
Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of anybonus, commission, incentive, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's soleand absolute discretion unless and until paid and may be modified at the Company’s sole and absolute discretion, consistent with applicable law.
AbbVie is an equal opportunity employer and is committed to operating with integrity, driving innovation, transforming lives and serving our community. Equal Opportunity Employer/Veterans/Disabled.
US & Puerto Rico only - to learn more, visit https://www.abbvie.com/join-us/equal-employment-opportunity-employer.html
US & Puerto Rico applicants seeking a reasonable accommodation, click here to learn more:
https://www.abbvie.com/join-us/reasonable-accommodations.html
Together, we break through We believe the paths we take to achieving our breakthroughs matter. At AbbVie, every one of our 50,000 employees is a... Read more