Manager, Global Internal IT Audit

Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 114,000 colleagues serve people in more than 160 countries.

About Abbott

Abbott is a global healthcare leader, creating breakthrough science to improve people's health. We're always looking towards the future, anticipating changes in medical science and technology.

Working at Abbott

At Abbott, you can do work that matters, grow, and learn, care for yourself and family, be your true self and live a full life. You'll also have access to:

• Career development with an international company where you can grow the career you dream of .

• Free medical coverage for employees* via the Health Investment Plan (HIP) PPO

• An excellent retirement savings plan with high employer contribution

• Tuition reimbursement, the Freedom 2 Save student debt program and FreeU education benefit - an affordable and convenient path to getting a bachelor's degree.

• A company recognized as a great place to work in dozens of countries around the world and named one of the most admired companies in the world by Fortune.

• A company that is recognized as one of the best big companies to work for as well as a best place to work for diversity, working mothers, female executives, and scientists.

The Opportunity

We have an immediate opportunity for a Manager, Global Internal IT Audit in our Abbott Park, IL location.

The Manager, Global Information Technology (IT) Internal Audit, manages various technical control assessments and providing the business with an independent analysis of their risk landscape. The IT Audit Manager is responsible for assessing the adequacy of Global Information Technology security and controls for the corporation. This includes performing a risk assessment of the Global IT policies, strategies and controls and then developing and executing an IT audit plan. The IT Audit Manager will lead, hire, develop and provide on the job training to IT Corporate Audit personnel responsible for executing the IT audit plan which includes assessing and testing IT and business processes and recommending control solutions to address any deficiencies. The Manager will be responsible for developing work plans and ensuring high quality execution of audit or advisory projects. They will work in complex technology and application environments and develop and report findings to Senior Management. In addition, they will manage and assist other Business and Risk Assurance professionals located in Abbott offices globally in performing information technology control and security engagements. 

What You'll Work On:

• Develop the audit schedule and plan the allocation of IT audit resources based on audit scope and risk. Identify opportunities to integrate IT audit with Financial and Sales and Marketing Compliance audit to help increase audit efficiency and effectiveness.

• Partner and collaborate with senior leadership and other team members to plan engagements, including conducting risk assessments and developing work programs and timelines. Work with the engagement team to document the business processes and control environment. Manage fieldwork by directing audit staff, and informing management and business leaders of engagement status.

• Demonstrate and apply deep technical or specialty skills to understand and evaluate the risk landscape surrounding a complex information systems environment. Use knowledge of industry IT trends and control frameworks to identify the engagement scope. Communicate evaluation results to senior leadership through written correspondence and verbal presentations.

• Apply project management skills, inspire, and mentor team members, think end-to-end, and use technology and tools to enhance the effectiveness of deliverables and services.

• Stay abreast of current and emerging security trends and risks. Research new technologies, laws and regulations, understand existing processes, and reference recognized standards and frameworks.

• Partner with other Risk Assurance professionals on engagements to improve the on-going control environment.

• Communicate assessment results to internal partners, Audit Management, and team members. Build and maintain strong partnerships with policy owners and internal workgroups leading strategic initiatives, defining corporate requirements and policies.

• Continually recruit, train, develop and place auditors into the worldwide IT organization.

Position Requirements:

• Five to seven years of experience with information security or in a technology related field. Candidate must have both audit and non-audit roles.

• Technical expertise in one or more of the following areas: Cybersecurity, Data Privacy, Product Cybersecurity, Cloud Security, ERP security and controls (SAP), Data Governance or Business Product Cybersecurity Assessments.

• Advanced certifications such as Certified Information Systems Security Professional (CISSP), CSX Cybersecurity Practitioner (CSX-P), Certified Cloud Security Professional (CCSP), Certified Information Privacy Professional (CIPP), Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Healthcare Information Security and Privacy Practitioner (HCISPP), Certified in the Governance of Enterprise IT (CGEIT), Certified Public Accountant (CPA), and ISO 27001/2.

• Detailed insight of IT best practice standards and frameworks, such as ISO 27001/2 and NIST is required.

• Bachelor's or Masters degree in Cybersecurity, Management Information Systems, Computer Science, Engineering, Finance, with proper technical focus and experience.

• Experience with working on global teams across time zones, cultures, and languages.

• Practical knowledge of various risk frameworks, methodologies, leading industry/assurance standards and regulations, as well as attestation reporting frameworks, such as ISO 27001/2, NIST, COBIT, SOC2 reporting framework.

• Willingness to travel globally outside of your assigned office location.

• Ability to think strategically; work with a sense of urgency and pay attention to detail. Ability to multi-task and prioritize in a rapidly growing, fast-paced interactive, results-based team environment; adaptable, self-starter, and able to solution creatively within ambiguity.

• Knowledge and experience conducting cybersecurity assessments, privacy strategies and/or architecture reviews.

• Must have excellent writing skills and the ability to communicate technical details in simple terms.

• Experience working and liaising with senior leaders (e.g., CIO, CISO, Vice Presidents, Directors).

• Analytical and problem-solving mindset; demonstrated by strong quantitative skills and ability to synthesize large amounts of data in short periods of time for consumption by multiple stakeholders.

• Effective relationship-building, communication, presentation, and interpersonal skills. Highly disciplined, with strong organizational abilities. Ability to multi-task, prioritize work and work independently.

• Possess exceptional level of integrity and customer focus.

• Participants who complete a short wellness assessment qualify for FREE coverage in our HIP PPO medical plan. Free coverage applies in the next calendar year.

Learn more about our health and wellness benefits, which provide the security to help you and your family live full lives: ~~~

Follow your career aspirations to Abbott for diverse opportunities with a company that can help you build your future and live your best life. Abbott is an Equal Opportunity Employer, committed to employee diversity.

Connect with us at ~~~ , on Facebook at ~~~/Abbott and on Twitter @AbbottNews and @AbbottGlobal

The base pay for this position is $95,000.00 - $190,000.00. In specific locations, the pay range may vary from the range posted.

An Equal Opportunity Employer

Abbot welcomes and encourages diversity in our workforce.

We provide reasonable accommodation to qualified individuals with disabilities.

To request accommodation, please call ~~~ or email ~~~