ABBOTT LABORATORIES Cyber Threat Action Center (CTAC) Manager Salary in the United States

Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 103,000 colleagues serve people in more than 160 countries.

Cyber Threat Action Center (CTAC) Manager

Primary Function

The CTAC Manager manages a team of Cyber Defense Analysts that are responsible for Incident Response and Threat Intelligence at Abbott.  The CTAC Manager is an experienced cyber security analyst and is responsible for all internal cyber security operations tasks and management of the CTAC. The CTAC Manager provides direction to the analysts and acts as a key point-of-contact to other teams within Abbott.

Key Responsibilities

• Ensure that Service Level Agreements are defined, tracked and met across Abbott
• Mentor and guide SOC Lead and Analysts and perform knowledge transfer to other teams as required
• Lead the expansion and growth of the CTAC; drive integration of new products and services
• Ensure that Standard Operating Procedures are being created and followed by the team
• Advise and approve of cyber threat use cases and adapt to meet the business requirements
• Coordinate threat hunting missions and remediate gaps that are identified
• Contribute to the strategic development of detections using MITRE ATT&CK and Cyber Kill Chain frameworks
• Advise on automating IR tasks through technology integrations via scripting and orchestration of playbooks
• Support the advancement of Abbott’s Cyber Threat Intelligence and vulnerability management programs to ensure consistent detection, analysis, response, and monitoring of cybersecurity threats including actors, campaigns and vulnerabilities
• Compose and deliver Situation Reports for Executive Leadership
• Participate in cross-team coordination to achieve defined security goals as well as meet technical requirements in support of detailed implementation plans for security projects
• Oversee assessment of cybersecurity incidents to identify the root cause, respond, and recover the environment

Skill Requirements

• Extensive knowledge of detection and content engineering for SIEM and EDR
• Strong written and verbal communication skills; must be able to effectively communicate to all levels of staff up to executive-level management, customers (internal and external), and vendors.
• Be available for on-call duty to lead high-impact cybersecurity incidents
• Be driven for both personal and staff development through security conferences, Capture the Flags (CTF), lab time and research

Minimum Experience

• 8+ years of hands-on experience directly related to the area of incident response, threat hunting, digital forensics, malware analysis, or cyber threat intelligence
• Experience managing or coordinating major cyber incidents at the enterprise level
• Bachelor’s degree preferred but will consider applicable work experience as it translates to an equivalent degree. 
• Two or more of the following: GCIH, GCFE, GCFA, GREM, OSCP or equivalent certifications preferred