Senior DevSecOps Engineer; Remote

Company Description

Abb Vie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas – immunology, oncology, neuroscience, and eye care – and products and services in our Allergan Aesthetics portfolio. For more information about Abb Vie, please visit us at  Follow @abbvie on X, Facebook, Instagram, You Tube, Linked In and Tik Tok.

Become a key player in our Information Security team as a Senior Dev Sec Ops Engineer , where you willleverageyourexpertisein application securityandsecurity engineering to support and enhance our codescanningandfinding management processes. This role involves the implementation and administration of application security tooling, integration of scanning into CI/CD pipelines, and building or implementing automated finding management technologies tofacilitatedeveloper remediation activities.

This position can be virtually anywhere in the U.S.

Responsibilities:

• Implementing and maintaining
  
  Application Security Testing (AST) tools(SAST,DAST,IAST,SCA, etc.)toidentifyvulnerabilitiesand configuration issues during the software development lifecycle.
• Implementing andmaintainingtools (such as Application Security Posture Management/ASPM) to centralize and deduplicate findings from multiple solutions and integratereportinginto software development workflows.
• Integrating security tooling withlarge-scale enterprise
  
  CI/CD pipelines.
• Building and managingtoolingand processestodrive efficient
  
  Dev Sec Ops operations .

Required:

• Bachelors Degree and 7years experience
  
  ORMasters
  
  Degree and 6years experience
  
  OR PhD and2 years experience
• 4+ years of experience insecurity engineering and/orDev Sec Opswith  a focus on security process automation
• 2+ years of experience implementing, administering, and supporting application security tooling such as SAST/DAST/IAST/SCA
• Demonstrated experience designing, building, and optimizing
  
  CI/CD pipelines(such as Git Hub Actions and Azure Dev Ops) for large-scale enterprise environments, including integrating security testing solutions,for both on-premises and cloud environments to ensure secure, efficient, and compliant software delivery throughout the development lifecycle
• Ability to effectively communicateanddocumenttechnical findings to both technical and non-technical stakeholders
• Experience automating workflows via programming languages such as Python

Preferred:

• Experienceimplementingcustomor commercial solutions(such as Application Security Posture Management (ASPM) tooling) to automate
  
  Dev Sec Ops processes ,manage scan findings,and integrate withdeveloperworkflows
• Experience implementing andmaintainingcontainer security in enterprise environments,utilizing industry-leading tools and practices for vulnerability management, image scanning, access control, and runtime protection to safeguard applications throughout the container lifecycle.
• Experience administering
  
  Snykin large enterprise environments
• Experience integrating security tooling and processes with
  
  Jfrog
  
  Artifactoryorotherartifact repositories
• Proven experience managing, storing, and distributing build artifacts at scale in enterprise environments, implementing best practices for artifact versioning, security, and traceability to support robust, efficient, and compliant software delivery pipelines

• The compensation range described below is the range of possible base pay compensation that the Company believes ingood faith it will pay for this role at the timeof this posting based on the job grade for this position.
  
  Individual compensation paid within this range will depend on many factors including geographic location, andwemay ultimately pay more or less than the posted range. This range may be modified in thefuture.
• We offer a comprehensive package of benefits including paid time off (vacation, holidays, sick),medical/dental/vision insurance and 401(k) to eligible employees.
• This job is eligible to participate in our short-term incentive programs.

Note:

No amount of payis considered to bewages or compensation until such amount is earned, vested, and determinable.

The amount and availability of any bonus,commission, incentive, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole andabsolutediscretion unless and until paid andmay be modified at the Company’s sole and absolute discretion, consistent with applicable law.

Abb Vie is an equal opportunity employer and is committed to operating with integrity, driving innovation, transforming lives and serving our community. Equal Opportunity Employer/Veterans/Disabled.

US & Puerto Rico only - to learn more, visit

US & Puerto Rico applicants seeking a reasonable accommodation,  to learn more: