Cybersecurity Program Manager - Posture, Hygiene and AI (Remote)
AbbVie
2 months ago
Remote
United States
IT
Responsibilities:
- Establish and mature an enterprise AI/ML security posture and hygiene strategy, including generative AI (onβprem and cloud).
- Assemble and manage a team implementing, assessing, and maturing CIS Top 18 critical controls and associated safeguards.
- Develop and execute strategies for continuous monitoring and improvement of security controls and configurations.
- Establish and enforce security configuration policies/procedures/standards to prevent unauthorized access, data breaches, and cyber threats.
- Collaborate with IT, network, and other departments to align security with organizational goals and compliance requirements.
- Develop and maintain documentation on security controls, assessments, incidents, and improvements.
- Conduct regular maturity assessments of each security control and recommend enhancements.
- Stay abreast of cybersecurity trends, threats, and technologies to evolve security strategies.
- Lead education and training initiatives on cybersecurity good practices and forward-thinking security posture.
- Ensure security programs adhere to relevant laws, regulations, and policies.
- Oversee daily operations, including targeted assessments, risk management, and response strategies.
- Build partnerships with business and technology senior leaders.
- Build metrics and dashboards to provide actionable insights into the technology security posture.
Qualifications:
- Bachelors + 9 years OR Masters + 8 years OR PhD + 4 years experience.
- Proven leadership in cybersecurity security posture and hygiene strategies in complex IT environments.
- Experience implementing an AI security program across an enterprise.
- Expert knowledge of operating systems, networking protocols, systems administration, XaaS, applications, and security technologies.
- Expert knowledge of cybersecurity terminology, concepts, threat landscape, and attack vectors.
- Deep understanding of risk management principles integrated into security practices.
- Experience with CIS Top 18 controls; familiarity with CIS Controls Implementation Groups (IGs).
- Advanced critical thinking, problem-solving, and analytical skills.
- Strong leadership and collaboration; excellent written/verbal communication.
- Professional cybersecurity certifications (e.g., CISSP, CISM, CIS Controls) highly desirable.
Benefits (as stated):
- Paid time off (vacation, holidays, sick), medical/dental/vision insurance, 401(k) (eligible employees)
- Short-term incentive programs eligible.
Application instructions:
- Position can be based remotely/virtually anywhere in the U.S.
- Establish and mature an enterprise AI/ML security posture and hygiene strategy, including generative AI (onβprem and cloud).
- Assemble and manage a team implementing, assessing, and maturing CIS Top 18 critical controls and associated safeguards.
- Develop and execute strategies for continuous monitoring and improvement of security controls and configurations.
- Establish and enforce security configuration policies/procedures/standards to prevent unauthorized access, data breaches, and cyber threats.
- Collaborate with IT, network, and other departments to align security with organizational goals and compliance requirements.
- Develop and maintain documentation on security controls, assessments, incidents, and improvements.
- Conduct regular maturity assessments of each security control and recommend enhancements.
- Stay abreast of cybersecurity trends, threats, and technologies to evolve security strategies.
- Lead education and training initiatives on cybersecurity good practices and forward-thinking security posture.
- Ensure security programs adhere to relevant laws, regulations, and policies.
- Oversee daily operations, including targeted assessments, risk management, and response strategies.
- Build partnerships with business and technology senior leaders.
- Build metrics and dashboards to provide actionable insights into the technology security posture.
Qualifications:
- Bachelors + 9 years OR Masters + 8 years OR PhD + 4 years experience.
- Proven leadership in cybersecurity security posture and hygiene strategies in complex IT environments.
- Experience implementing an AI security program across an enterprise.
- Expert knowledge of operating systems, networking protocols, systems administration, XaaS, applications, and security technologies.
- Expert knowledge of cybersecurity terminology, concepts, threat landscape, and attack vectors.
- Deep understanding of risk management principles integrated into security practices.
- Experience with CIS Top 18 controls; familiarity with CIS Controls Implementation Groups (IGs).
- Advanced critical thinking, problem-solving, and analytical skills.
- Strong leadership and collaboration; excellent written/verbal communication.
- Professional cybersecurity certifications (e.g., CISSP, CISM, CIS Controls) highly desirable.
Benefits (as stated):
- Paid time off (vacation, holidays, sick), medical/dental/vision insurance, 401(k) (eligible employees)
- Short-term incentive programs eligible.
Application instructions:
- Position can be based remotely/virtually anywhere in the U.S.