Sr. Manager, Supply Chain Cybersecurity
Johnson & Johnson
4 hours ago
Remote friendly (San Angelo, TX)
United States
IT
Sr. Manager, Supply Chain Cybersecurity (Surgery Supply Chain ISRM)
Responsibilities
- Provide early/proactive engagement with project teams; end-to-end support for large programs.
- Perform cybersecurity risk assessments of IT/OT assets at manufacturing sites.
- Drive cybersecurity capability adoption across Surgery sites to secure IT/OT assets and enable safe, secure innovation.
- Provide tailored security guidance by interpreting and applying internal security requirements/standards for IT/OT and OT-specific technologies.
- Lead the cyber operational portfolio from identification to remediation plan through completion with ISRM, business, and technology partners.
- Establish data analytics to provide security posture across Surgery business units, functions, and sites.
- Promote the importance of cybersecurity across the sector and sites.
- Assist the Security Operations Center (SOC) with security incident investigation; liaise with central investigation team.
- Ensure compliance with critical cybersecurity regulations (e.g., NIST, NIS2, Safe Data).
- Support global deployment of security initiatives (awareness sessions, alternative working methods to avoid disruptions, review exception requests).
- Provide audit support as liaison between audit, technology, and business from pre-work through remediation plans.
Qualifications
- 8+ years of leadership/execution experience in cybersecurity with supply chain background required.
- Bachelorβs degree in computer science, information technology, business administration, or similar discipline required; MBA preferred.
- 6+ years hands-on technology delivery and cybersecurity design/capabilities required.
- Preferred: CISM, CISSP, ISA-62443; CISA; CRISC.
- Strong communication/collaboration; ability to network and influence globally across functions and sectors.
- Strategic mindset to build capability roadmaps using data and automation.
- Experience securing/working across enterprise architecture layers (data, application, host, middleware, network, infrastructure).
- Solid understanding of threats, mitigations, and security vendors/technologies.
- Required: security data protection in manufacturing/distribution environments.
- Required: direct/support experience with supply chain applications; Sarbanes-Oxley compliance/audit preferred.
- Required: ISA/IEC 62443, NIST 800-53, NIST 800-82.
- Ability to lead diverse team members; planning/resource allocation.
- Big-picture and detail-oriented; align strategic and tactical security aspects.
- Preferred: AI fluency/background in AI use cases.
Required/Preferred Skills
- Required: Cybersecurity, Supply Chain
- Preferred: AI use cases background
Benefits
- Vacation: 120 hours per calendar year
- Sick time: 40 hours per calendar year (CO: 48; WA: 56)
- Holiday pay (including Floating Holidays): 13 days per calendar year
- Work, Personal and Family Time: up to 40 hours per calendar year
- Parental Leave: 480 hours within one year of birth/adoption/foster care
- Bereavement Leave: 240 hours (immediate) / 40 hours (extended) per calendar year
- Caregiver Leave: 80 hours in a 52-week rolling period
- Volunteer Leave: 32 hours per calendar year
- Military Spouse Time-Off: 80 hours per calendar year
Travel
- Up to 10% domestic and international travel
Responsibilities
- Provide early/proactive engagement with project teams; end-to-end support for large programs.
- Perform cybersecurity risk assessments of IT/OT assets at manufacturing sites.
- Drive cybersecurity capability adoption across Surgery sites to secure IT/OT assets and enable safe, secure innovation.
- Provide tailored security guidance by interpreting and applying internal security requirements/standards for IT/OT and OT-specific technologies.
- Lead the cyber operational portfolio from identification to remediation plan through completion with ISRM, business, and technology partners.
- Establish data analytics to provide security posture across Surgery business units, functions, and sites.
- Promote the importance of cybersecurity across the sector and sites.
- Assist the Security Operations Center (SOC) with security incident investigation; liaise with central investigation team.
- Ensure compliance with critical cybersecurity regulations (e.g., NIST, NIS2, Safe Data).
- Support global deployment of security initiatives (awareness sessions, alternative working methods to avoid disruptions, review exception requests).
- Provide audit support as liaison between audit, technology, and business from pre-work through remediation plans.
Qualifications
- 8+ years of leadership/execution experience in cybersecurity with supply chain background required.
- Bachelorβs degree in computer science, information technology, business administration, or similar discipline required; MBA preferred.
- 6+ years hands-on technology delivery and cybersecurity design/capabilities required.
- Preferred: CISM, CISSP, ISA-62443; CISA; CRISC.
- Strong communication/collaboration; ability to network and influence globally across functions and sectors.
- Strategic mindset to build capability roadmaps using data and automation.
- Experience securing/working across enterprise architecture layers (data, application, host, middleware, network, infrastructure).
- Solid understanding of threats, mitigations, and security vendors/technologies.
- Required: security data protection in manufacturing/distribution environments.
- Required: direct/support experience with supply chain applications; Sarbanes-Oxley compliance/audit preferred.
- Required: ISA/IEC 62443, NIST 800-53, NIST 800-82.
- Ability to lead diverse team members; planning/resource allocation.
- Big-picture and detail-oriented; align strategic and tactical security aspects.
- Preferred: AI fluency/background in AI use cases.
Required/Preferred Skills
- Required: Cybersecurity, Supply Chain
- Preferred: AI use cases background
Benefits
- Vacation: 120 hours per calendar year
- Sick time: 40 hours per calendar year (CO: 48; WA: 56)
- Holiday pay (including Floating Holidays): 13 days per calendar year
- Work, Personal and Family Time: up to 40 hours per calendar year
- Parental Leave: 480 hours within one year of birth/adoption/foster care
- Bereavement Leave: 240 hours (immediate) / 40 hours (extended) per calendar year
- Caregiver Leave: 80 hours in a 52-week rolling period
- Volunteer Leave: 32 hours per calendar year
- Military Spouse Time-Off: 80 hours per calendar year
Travel
- Up to 10% domestic and international travel