Company Description

AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas – immunology, oncology, neuroscience, and eye care – and products and services in our Allergan Aesthetics portfolio. For more information about AbbVie, please visit us at www.abbvie.com. Follow @abbvie on X, Facebook, Instagram, YouTube, LinkedIn and Tik Tok.

Job Description

People. Passion. Possibilities. Three words that make a world of difference.

More than a job. It's a chance to make a real difference.

Together, we break through – as a Security Analyst Incident Response (all genders)

This position is part of AbbVie’s Information Security & Risk Management (ISRM) team. We are here to put our partners in a position to succeed. We do it by providing the knowledge, tools, and support they need to effectively use data and technology while also effectively managing risk.

AbbVie Information Security is looking for a highly motivated, talented defender to join the Cyber Security Incident Response Team (CSIRT). The Cyber Security Operations Center (CSOC) manages the initial investigation and response to security events, alerts, and threats, and works directly to augment the incident responders. This is a new capability within the Cyber Security Incident Response Team (CSIRT), working within the larger Cyber Security Operations (CSO) function. Join us as a Security Analyst, Incident Response to form the first line of defense against cyber-attacks and help our business to continue to have remarkable impacts on people’s lives.

This is a highly technical role responsible for the initial triage of cyber security alerts, responding to confirmed cyber security incidents, escalation of cyber security incidents, as needed, and driving detection improvements whenever possible.

This role will assist in continuing to build your foundation of skills and knowledge in incident response and digital forensics and provides a clear career path to more senior incident response and digital forensics specializations.

Make your mark:

Responding to cyber security alerts within defined SLAsContributing to key initiatives to enhance the Cyber Security Operations team’s maturity and operational capabilitiesAdhering to cyber security processes, procedures and other documentation while performing incident response dutiesAssisting with development of documentation regarding how to perform specific incident response tasksAnalysing security system logs, security tools, and available data sources to identify attacks against the enterprise and report on any irregularities, issues related to improper access patterns, trending, and event correlations and make suggestions for detection development and system tuningAssisting in identifying monitoring/detection gaps and helping to drive them toward resolutionEscalating cyber security incidents to incident response analysts when appropriateIdentifying and actioning incident trends observed during triage and response activitiesAssisting with the development, maintenance of, and training on technical documentation and Standard Operating Procedures (SOP)Assisting with cyber security awareness and education initiatives, as neededOperating in a global on-call rotation and being available to respond outside of normal business hours, if necessary

 

Qualifications

This is how you make a difference:

Basic understanding of system logging and auditing conceptsBasic understanding of security controls (i.e. anti-virus, EDR, IPS/IDS) and their capabilitiesAbility to author original technical documentationWorking knowledge of diverse operating systems, networking protocols, systems administration, and security technologiesFamiliarity with cyber security terminology and concepts, and basic understanding of the cyber threat landscape and attack vectorsCapability to learn new concepts and processes quickly, and adapt to a constantly changing environmentDemonstrated critical thinking, problem solving, and analytical skills with the ability to de-construct complex conceptsAbility to successfully interact with non-technical personnelAbility to analyse and understand technical informationAbility to work independently with minimal direction for day-to-day activitiesEducation & Experience - Minimum of one of the following:Minimum of 6 years of IT experience with 4 years in a specialized information security roleBachelor’s Degree in computer science or related technical field and 4 years of IT experienceBachelor’s Degree in computer science or related technical field and 3 years of specialized information security experienceMaster’s Degree in computer science or related technical field and 2 years of specialized information security experienceEquivalent qualification (e.g. completed apprenticeship with an IT focus) with several years of relevant experienceFluent language proficiency in German and English

 

Beneficial:

Intermediate level of understanding of incident response terminology and methodologiesIntermediate level of understanding of common Windows OS artifacts and their relation to cyber security investigationsKnowledgeable of multiple technologies and systems that support CSOC and CSIRT services (e.g., SOAR, SIEM, IPS/IDS, EDR, etc.)Knowledgeable on areas of Information Security, outside of Incident Response (e.g., Security Architecture, Security Engineering, Application Security, Vulnerability Management, Threat Intelligence, etc.)Familiarity with cloud environment architectureFamiliarity with various scripting languages (e.g., PowerShell, Python, JavaScript)Familiarity with digital forensics concepts and tools, malware reversal concepts and techniques, and data loss and data protection concepts and processesExperience analysing and pivoting on large sets of dataFamiliarity with change and incident management concepts and processesCertifications consisting of any of the following: GIAC Forensic Examiner (GCFE), GIAC Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), GIAC Network Forensic Analyst (GNFA), GIAC Advanced Smartphone Forensics (GASF), or other cybersecurity certifications.

 

What we offer you:

with a diverse work environment where you can have a real impactwith an open corporate culturewith an attractive salarywith an intensive onboarding process with a mentor at your sidewith flexible work models for a healthy work-life balancewith a corporate health management that offers comprehensive health and exercise programswith company social benefitswith a wide range of career opportunities in an international organizationwith top-tier, attractive development opportunitieswith a strong international network

At multiple times, we have been globally recognized as a "Great Place to Work" and we are proud to provide our employees with the flexibility to maintain a healthy work-life balance. We take our impact on the environment and our communities seriously and therefore focus on giving something back on a regular basis. We are committed to equality, equity, diversity and inclusion (EED&I) – a commitment that is fundamental to us. This includes appreciating different perspectives, creating an inclusive culture and treating all employees with dignity and respect.

At AbbVie, your individual contributions count – help us move mountains together. Be a part of our success, grow with us and accomplish more than you could have imagined. Sounds like the perfect career opportunity for you? We look forward to receiving your application! All you need is a complete CV – we will discuss everything else with you in person. An internal application always requires a certain degree of transparency. So please remember when you want to inform the current manager about it. If there is any uncertainty on this subject, your BHR Partner, Talent Acquisition and colleagues on the Works Council will also be available for information.

Any questions? Feel free to email us at TalentAcquisition.de@abbvie.com – We look forward to hearing from you!

Additional Information

AbbVie is an equal opportunity employer and is committed to operating with integrity, driving innovation, transforming lives and serving our community.  Equal Opportunity Employer/Veterans/Disabled. 

US & Puerto Rico only - to learn more, visit https://www.abbvie.com/join-us/equal-employment-opportunity-employer.html

US & Puerto Rico applicants seeking a reasonable accommodation, click here to learn more:

https://www.abbvie.com/join-us/reasonable-accommodations.html