Senior DevSecOps Engineer

About AbbVie

AbbVie is a biopharmaceutical company focused on immunology, oncology, neuroscience, virology, and aesthetics. It is a sub-organization of AbbVie. It was founded in 2013, and is headquartered in North Chicago, Illinois, USA, with a workforce of 10001+ employees.

Responsibilities

• Implementing and maintaining Application Security Testing (AST) tools (SAST, DAST, IAST, SCA, etc.) to identify vulnerabilities and configuration issues during the software development lifecycle
• Implementing and maintaining tools (such as Application Security Posture Management / ASPM) to centralize and deduplicate findings from multiple solutions and integrate reporting into software development workflows
• Integrating security tooling with large-scale enterprise CI/CD pipelines
• Building and managing tooling and processes to drive efficient DevSecOps operations

Qualifications

• Bachelors Degree and 7 years experience OR Masters Degree and 6 years experience OR PhD and 2 years experience
• 4+ years of experience in security engineering and/or DevSecOps with a focus on security process automation
• 2+ years of experience implementing, administering, and supporting application security tooling such as SAST/DAST/IAST/SCA
• Demonstrated experience designing, building, and optimizing CI/CD pipelines (such as GitHub Actions and Azure DevOps) for large-scale enterprise environments, including integrating security testing solutions, for both on-premises and cloud environments to ensure secure, efficient, and compliant software delivery throughout the development lifecycle
• Ability to effectively communicate and document technical findings to both technical and non-technical stakeholders
• Experience automating workflows via programming languages such as Python
• Experience implementing custom or commercial solutions (such as Application Security Posture Management (ASPM) tooling) to automate DevSecOps processes, manage scan findings, and integrate with developer workflows
• Experience implementing and maintaining container security in enterprise environments, utilizing industry-leading tools and practices for vulnerability management, image scanning, access control, and runtime protection to safeguard applications throughout the container lifecycle
• Experience administering Snyk in large enterprise environments
• Experience integrating security tooling and processes with Jfrog Artifactory or other artifact repositories
• Proven experience managing, storing, and distributing build artifacts at scale in enterprise environments, implementing best practices for artifact versioning, security, and traceability to support robust, efficient, and compliant software delivery pipelines

Benefits

• Paid time off (vacation, holidays, sick)
• Medical/dental/vision insurance
• 401(k)

Company H1B Sponsorship

AbbVie has a track record of offering H1B sponsorships, with 273 in 2025, 190 in 2024, 225 in 2023, 284 in 2022, 186 in 2021, 186 in 2020. Please note that this does not guarantee sponsorship for this specific role.