Cybersecurity Lead– Business Information Security, Innovative Medicine

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com

Job Function

Technology Enterprise Strategy & Security

Job Sub Function

Security & Controls

Job Category

Scientific/Technology

All Job Posting Locations

Raritan, New Jersey, United States of America, Titusville, New Jersey, United States of America

Job Description

We are seeking the best talent for a Cybersecurity Lead– Business Information Security, Innovative Medicine to be located in Titusville or Raritan, NJ. The Lead will provide assurance over the cybersecurity of the Innovative Medicine Commercial organization in the NA region. The role will be responsible for providing security consulting services for the JJIM Commercial organization.

Responsibilities

• Engagement: Build relationships and collaborate with J&J Innovative Medicine NA IT and business partners to ensure security is coordinated into all solutions and vendor relationships.
• Security Assurance: Ensure controls are appropriately implemented throughout the SDLC of a project, perform security testing (e.g., vulnerability scans), and ensure accurate remediation.
• Regulatory Expertise: Experience with transposing directives in security controls, conducting the respective risk assessments, and responding to incidents, specifically within the context of regulations (ex. NIS2, GDPR, ISO 27001).
• Consulting: Provide security consulting by applying controls related to confidentiality, integrity, and availability, and assess risks against these requirements.
• Compliance: Ensure compliance with internal policies keeping in mind local country requirements if applicable.
• Capability Adoption: Support the adoption of ISRM security capabilities across the business.
• Threat Intelligence: Deploy threat intelligence capabilities to monitor for new threats, vulnerabilities, and assess their potential impact. (engage with government and industry agencies).
• Education and Training: Promote cybersecurity procedures and controls for internal partners' awareness and understanding.
• Communication: Maintain connections across peer groups to continuously learn and understand emerging security solutions that are ground-breaking enablers for challenges we face.

Qualifications

Required:

• A BA/BS degree in Computer Science, Engineering, or IT Security, is required.
• A foundation of IT knowledge (technical) is required, either through experience, education or certification.
• 5 + years of experience in an IT or security (technical) role is required.
• Consultancy skills (translation of ideas to customers, communication, ability to simplify sophisticated situations, ..) is key!
• Ability to maintain robust relationships with peers and business partners.
• Develop and implement security controls, policies, and procedures to safeguard critical assets.
• Creative problem-solving skills and understanding of complex environments (data, application, middleware, network) preferred.
• Function efficiently both on an individual level as well as a member of the team.
• Your dedication to integrity and the delivery of efficient results supports our Johnson and Johnson credo.

Preferred

• Any security certifications are a plus!
• Experience with security tools like vulnerability scanners (e.g., Nessus, Qualys), infrastructure scanning tools, and penetration testing tools.
• Detailed understanding of the IT development processes in different settings (agile, proof of concept, ..).
• Hands-on experience supporting reverse security assessments.

Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act.

Johnson and Johnson is committed to providing an interview process that is inclusive of our applicants’ needs. If you are an individual with a disability and would like to request an accommodation, please email the Employee Health Support Center (ra-employeehealthsup@its.jnj.com) or contact AskGS to be directed to your accommodation resource.

#JNJTECH

The anticipated base pay range for this position is:

$91,000 - $147,200

Additional Description For Pay Transparency

The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation’s performance over a calendar/performance year. Bonuses are awarded at the Company’s discretion on an individual basis. Employees and/or eligible dependents may be eligible to participate in the following Company sponsored employee benefit programs: medical, dental, vision, life insurance, short- and long-term disability, business accident insurance, and group legal insurance. Employees may be eligible to participate in the Company’s consolidated retirement plan (pension) and savings plan (401(k)). Employees are eligible for the following time off benefits: Vacation – up to 120 hours per calendar year, Sick time - up to 40 hours per calendar year; for employees who reside in the State of Washington – up to 56 hours per calendar year, Holiday pay, including Floating Holidays – up to 13 days per calendar year of Work, Personal and Family Time - up to 40 hours per calendar year. Additional information can be found through the link below. http://www.careers.jnj.com/employee-benefits The compensation and benefits information set forth in this posting applies to candidates hired in the United States. Candidates hired outside the United States will be eligible for compensation and benefits in accordance with their local market.