Johnson & Johnson is recruiting for a Manager, Cyber Compliance located in Raritan, NJ.

The Manager, Cyber Compliance, is responsible for identifying emerging cybersecurity laws and regulations around the globe and providing governance and oversight to ensure compliance with existing laws and regulations applicable to the company. They will support the development, implementation, and maintenance of a comprehensive cyber compliance program, collaborate with stakeholders in ISRM, JJT, other compliance functions, and business stakeholders, and support the development of compliance metrics and reporting.

Key Responsibilities:

• Lead development and maintenance of an overall cybersecurity governance and compliance program, including metrics and reporting.
• Research, and apply relevant laws, regulations, and industry standards to the organization's information systems and practices.
• In partnership with others security teams, develop and manage compliance assessment methodologies.
• Provide oversight to ensure creation and maintenance of governance and compliance documentation and records.
• Stay up-to-date on emerging laws, regulations, and compliance issues.
• Lead programs for company compliance with new global laws and regulations.
• Communicate cybersecurity compliance requirements to security and business technology teams.
• Partner with the Global Audit and Assurance team to drive compliance.
• Generate cybersecurity program content for Corporate stakeholders, supporting overall corporate governance.

• A bachelors degree is required, preferably in Computer Science, Engineering or Information Security/Cybersecurity.

• 5+ years of Information Security/IT Risk Management experience with growing responsibilities.
• 3+ years of cybersecurity governance and compliance experience.
• Experience with a variety of compliance frameworks, such as HIPAA, PCI DSS, SOX and an understanding of global cybersecurity laws and regulations.
• Experience with cybersecurity frameworks, such as the NIST Cybersecurity Framework, ISO 27001, ISO 27002, and SOC2.
• Experience implementing, operating, and maturing cybersecurity compliance with relevant frameworks, standards, and regulations.
• Excellent communication and interpersonal skills.
• Experience at a large multinational organization.

• Certifications: Information Security & Risk Management certifications preferred.
• Experience at a large multinational organization.

• 10% travel.

• Employees and/or eligible dependents may be eligible to participate in the following Company sponsored employee benefit programs: medical, dental, vision, life insurance, short- and long-term disability, business accident insurance, and group legal insurance.
• Employees may be eligible to participate in the Company's consolidated retirement plan (pension) and savings plan (401(k)).
• Employees are eligible for the following time off benefits:
• Vacation - up to 120 hours per calendar year
• Sick time - up to 40 hours per calendar year; for employees who reside in the State of Washington - up to 56 hours per calendar year
• Holiday pay, including Floating Holidays - up to 13 days per calendar year of Work, Personal and Family Time - up to 40 hours per calendar year
• Additional information can be found through the link below. https://www.careers.jnj.com/employee-benefits