Director, Threat Detection & Response
Johnson & Johnson
4 hours ago
Remote friendly (Raritan, NJ)
United States
IT
Director of Threat Detection & Incident Response
Main Responsibilities:
- Provide subject matter expertise for continuous monitoring of suspicious activity/alerts; triage and diagnose threats; perform root cause analysis and remediation. Review and accept escalations for business-impacting incidents and lead a technical investigation team through containment and recovery.
- Collect and analyze electronic devices, logs, malware, and other digital artifacts to support security investigations and response.
- Prepare and present regular reports and updates to senior management on incident response status and impact.
Other Duties:
- Mentor and develop team members.
- Evaluate and recommend cybersecurity tools and technologies to enhance response.
- Identify risks/vulnerabilities in systems and processes and coordinate mitigation.
- Use threat intelligence to inform response and strengthen proactive defense.
- Establish KPIs to measure incident response effectiveness.
- Participate in global on-call rotation for around-the-clock monitoring and response.
Qualifications:
- Education: Bachelorβs degree or equivalent experience required.
Required Experience & Skills:
- 10+ years in digital forensics and incident response.
- Digital forensics tools and techniques; incident response including major incident leadership.
- Technical writing and communication.
- Cyber defense frameworks (NIST, ISO, CIS).
- SIEM tools (Splunk, Sentinel).
- Programming/scripting (PHP, Python, JavaScript).
- Familiarity with AI/ML-based threat detection/automation and governance in a SOC/TDR context; understanding ML model behavior, false-positive reduction, and ethical governance.
- Data interpretation and feature-analysis for threat-analytics models.
Preferred Skills:
Business Process Design, Creating Purpose, Crisis Management, Critical Thinking, Cybersecurity, Developing Others, Inclusive Leadership, Information Security Auditing, Information Security Management System (ISMS), Information Technology (IT) Security Assessments, Information Technology Strategies, Leadership, Organizing, People Performance Management, Presentation Design, Process Optimization, Security Architecture Design, Security Policies
Main Responsibilities:
- Provide subject matter expertise for continuous monitoring of suspicious activity/alerts; triage and diagnose threats; perform root cause analysis and remediation. Review and accept escalations for business-impacting incidents and lead a technical investigation team through containment and recovery.
- Collect and analyze electronic devices, logs, malware, and other digital artifacts to support security investigations and response.
- Prepare and present regular reports and updates to senior management on incident response status and impact.
Other Duties:
- Mentor and develop team members.
- Evaluate and recommend cybersecurity tools and technologies to enhance response.
- Identify risks/vulnerabilities in systems and processes and coordinate mitigation.
- Use threat intelligence to inform response and strengthen proactive defense.
- Establish KPIs to measure incident response effectiveness.
- Participate in global on-call rotation for around-the-clock monitoring and response.
Qualifications:
- Education: Bachelorβs degree or equivalent experience required.
Required Experience & Skills:
- 10+ years in digital forensics and incident response.
- Digital forensics tools and techniques; incident response including major incident leadership.
- Technical writing and communication.
- Cyber defense frameworks (NIST, ISO, CIS).
- SIEM tools (Splunk, Sentinel).
- Programming/scripting (PHP, Python, JavaScript).
- Familiarity with AI/ML-based threat detection/automation and governance in a SOC/TDR context; understanding ML model behavior, false-positive reduction, and ethical governance.
- Data interpretation and feature-analysis for threat-analytics models.
Preferred Skills:
Business Process Design, Creating Purpose, Crisis Management, Critical Thinking, Cybersecurity, Developing Others, Inclusive Leadership, Information Security Auditing, Information Security Management System (ISMS), Information Technology (IT) Security Assessments, Information Technology Strategies, Leadership, Organizing, People Performance Management, Presentation Design, Process Optimization, Security Architecture Design, Security Policies