Insider Risk Lead
Company Description
AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas – immunology, oncology, neuroscience, and eye care – and products and services in our Allergan Aesthetics portfolio. For more information about AbbVie, please visit us at www.abbvie.com. Follow @abbvie on X, Facebook, Instagram, YouTube, LinkedIn and Tik Tok.
Job Description
The AbbVie Insider Risk Lead plays a critical role in safeguarding the organization by monitoring alerts generated from Insider Risk systems, conducting technical investigations, and enhancing detection mechanisms. This role involves analyzing telemetry data to proactively identify potential data loss or insider threats that could impact the business. The Insider Risk Lead will lead the charge in conducting investigations and collaborating with key stakeholders such as Legal, Human Resources, and Compliance to communicate findings and recommend next steps. Additionally, they will assist in remediating escalations, ensuring timely actions are taken to mitigate risks and address vulnerabilities. With a strong focus on program leadership, the Insider Risk Lead will guide the growth and development of the overall insider risk program, including developing complex alerting use cases and dashboards, normalizing and correlating data sources, and exploring new data sources for enhanced risk detection. Experience in identifying new use cases, understanding attack vectors, and emerging trends, along with contributing insights from industry working groups and internal exercises, is essential for this role.
This position can be virtual anywhere in the U.S.
Responsibilities:
Provide strategic direction for the insider risk program to identify new areas of growth and opportunity to mature from current state.
Lead insider risk threat hunting plans and capabilities for the team
Responsible for monitoring and analyzing employee activities, network logs, and security systems to identify any suspicious or malicious behavior that may indicate an insider risk. This includes monitoring for data exfiltration, policy violations, or any other insider risk activities that may pose a risk to the organization.
Prepare and present formal incident reports, interpreting and summarizing technical information to a non-technical audience.
Conduct interviews with employees to gather information related to an incident
Remediate incidents by witnessing and providing guidance on the secure deletion of AbbVie data from non-AbbVie systems
Proactively identify new use cases, attack vectors, and emerging trends in insider risk through industry working groups, analysis of publicly available information, internal identified gaps, and red/blue team exercises.
Develop and implement complex alerting and use cases across available data sets and systems to identify insider risks, leveraging insights gained from research and analysis to continuously enhance the organization's insider risk management capabilities.
Qualifications
Bachelors Degree and 8 years experience OR Masters Degree and 7 years experience OR PhD and 3 years experience
Minimum 5 years of Information Security experience or equivalent experience in Information Risk Management.
Experience triaging and escalating insider risk and data loss prevention alerts
Experience with various insider risk tools, including configuring detection within them
Experience in performing technical investigations, including gathering evidence, writing detailed reports, and effectively communicating findings in a concise manner
Ability to normalize, enrich, and correlate data sources, build complex detection mechanisms, develop dashboards, and explore new data sources for Insider Risk use cases.
Splunk Advanced Power User preferred
Candidates must possess strong analytical skills to identify complex security issues and respond at the same level with a technical understanding of when to escalate impacting security events.
Excellent oral and written communication skills, with the ability to convey technical information to both technical and non-technical audiences effectively.
Must be self-motivated and capable of independent work while operating in a geographically and culturally diverse peer group.
Additional Information
Applicable only to applicants applying to a position in any location with pay disclosure requirements under state or local law:
The compensation range described below is the range of possible base pay compensation that the Company believes in good faith it will pay for this role at the time of this posting based on the job grade for this position. Individual compensation paid within this range will depend on many factors including geographic location, and we may ultimately pay more or less than the posted range. This range may be modified in the future.
We offer a comprehensive package of benefits including paid time off (vacation, holidays, sick), medical/dental/vision insurance and 401(k) to eligible employees.
This job is eligible to participate in our short-term incentive programs.
This job is eligible to participate in our long-term incentive programs
Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, incentive, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole and absolute discretion unless and until paid and may be modified at the Company’s sole and absolute discretion, consistent with applicable law.
AbbVie is an equal opportunity employer and is committed to operating with integrity, driving innovation, transforming lives and serving our community. Equal Opportunity Employer/Veterans/Disabled.
US & Puerto Rico only - to learn more, visit https://www.abbvie.com/join-us/equal-employment-opportunity-employer.html
US & Puerto Rico applicants seeking a reasonable accommodation, click here to learn more:
https://www.abbvie.com/join-us/reasonable-accommodations.html
About the job
Apply for this position
Insider Risk Lead
Company Description
AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas – immunology, oncology, neuroscience, and eye care – and products and services in our Allergan Aesthetics portfolio. For more information about AbbVie, please visit us at www.abbvie.com. Follow @abbvie on X, Facebook, Instagram, YouTube, LinkedIn and Tik Tok.
Job Description
The AbbVie Insider Risk Lead plays a critical role in safeguarding the organization by monitoring alerts generated from Insider Risk systems, conducting technical investigations, and enhancing detection mechanisms. This role involves analyzing telemetry data to proactively identify potential data loss or insider threats that could impact the business. The Insider Risk Lead will lead the charge in conducting investigations and collaborating with key stakeholders such as Legal, Human Resources, and Compliance to communicate findings and recommend next steps. Additionally, they will assist in remediating escalations, ensuring timely actions are taken to mitigate risks and address vulnerabilities. With a strong focus on program leadership, the Insider Risk Lead will guide the growth and development of the overall insider risk program, including developing complex alerting use cases and dashboards, normalizing and correlating data sources, and exploring new data sources for enhanced risk detection. Experience in identifying new use cases, understanding attack vectors, and emerging trends, along with contributing insights from industry working groups and internal exercises, is essential for this role.
This position can be virtual anywhere in the U.S.
Responsibilities:
Provide strategic direction for the insider risk program to identify new areas of growth and opportunity to mature from current state.
Lead insider risk threat hunting plans and capabilities for the team
Responsible for monitoring and analyzing employee activities, network logs, and security systems to identify any suspicious or malicious behavior that may indicate an insider risk. This includes monitoring for data exfiltration, policy violations, or any other insider risk activities that may pose a risk to the organization.
Prepare and present formal incident reports, interpreting and summarizing technical information to a non-technical audience.
Conduct interviews with employees to gather information related to an incident
Remediate incidents by witnessing and providing guidance on the secure deletion of AbbVie data from non-AbbVie systems
Proactively identify new use cases, attack vectors, and emerging trends in insider risk through industry working groups, analysis of publicly available information, internal identified gaps, and red/blue team exercises.
Develop and implement complex alerting and use cases across available data sets and systems to identify insider risks, leveraging insights gained from research and analysis to continuously enhance the organization's insider risk management capabilities.
Qualifications
Bachelors Degree and 8 years experience OR Masters Degree and 7 years experience OR PhD and 3 years experience
Minimum 5 years of Information Security experience or equivalent experience in Information Risk Management.
Experience triaging and escalating insider risk and data loss prevention alerts
Experience with various insider risk tools, including configuring detection within them
Experience in performing technical investigations, including gathering evidence, writing detailed reports, and effectively communicating findings in a concise manner
Ability to normalize, enrich, and correlate data sources, build complex detection mechanisms, develop dashboards, and explore new data sources for Insider Risk use cases.
Splunk Advanced Power User preferred
Candidates must possess strong analytical skills to identify complex security issues and respond at the same level with a technical understanding of when to escalate impacting security events.
Excellent oral and written communication skills, with the ability to convey technical information to both technical and non-technical audiences effectively.
Must be self-motivated and capable of independent work while operating in a geographically and culturally diverse peer group.
Additional Information
Applicable only to applicants applying to a position in any location with pay disclosure requirements under state or local law:
The compensation range described below is the range of possible base pay compensation that the Company believes in good faith it will pay for this role at the time of this posting based on the job grade for this position. Individual compensation paid within this range will depend on many factors including geographic location, and we may ultimately pay more or less than the posted range. This range may be modified in the future.
We offer a comprehensive package of benefits including paid time off (vacation, holidays, sick), medical/dental/vision insurance and 401(k) to eligible employees.
This job is eligible to participate in our short-term incentive programs.
This job is eligible to participate in our long-term incentive programs
Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, incentive, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole and absolute discretion unless and until paid and may be modified at the Company’s sole and absolute discretion, consistent with applicable law.
AbbVie is an equal opportunity employer and is committed to operating with integrity, driving innovation, transforming lives and serving our community. Equal Opportunity Employer/Veterans/Disabled.
US & Puerto Rico only - to learn more, visit https://www.abbvie.com/join-us/equal-employment-opportunity-employer.html
US & Puerto Rico applicants seeking a reasonable accommodation, click here to learn more:
https://www.abbvie.com/join-us/reasonable-accommodations.html