Johnson & Johnson is seeking a passionate leader with an interest in working within the life science industry for the Senior Manager, Business Information Security, CBT

This role can be based in New Brunswick, NJ ; Raritan, NJ or Remote US.

Drive Cyber Trust and Security by Design through consulting, engagement, and assurance. Support the strategy for embedding cyber security into business initiatives, improving risk posture, secure critical intellectual property, protect sensitive assets, improve site security, and enhance business resiliency.

Provide assurance over the cybersecurity of the Corporate functions, with a focus on the financial organization, The role will be responsible for providing security consulting services for Corporate Business Technology and functions.

• Drive the adoption of security industry best-practices, J&J security standards and capabilities with to ensure that critical information and assets are protected from cyber threats.
• Provide assurance leadership on the cybersecurity risk posture of capabilities; including, security consulting, design reviews, ranking risks, consulting, and assurance on remediation.
• Plan and prioritize the integration of security measures in business projects during the design, development, and deployment phases
• Support regulatory requirements e.g., SOX 404, internal and external audits
• Enable ISRM capabilities for the business including awareness, business impact, exceptions handling (e.g., Safe Data, Entra)
• Facilitate education and training to the organization on cybersecurity procedures and controls
• Provide metrics and reporting to senior ISRM and Business leadership on status of compliance to cybersecurity IAPP requirements and risks

• A bachelor's degree in technology, cybersecurity or other rigorous discipline is required.
• 7 Years related experience
• Deep understanding of cybersecurity controls and concepts
• Solid grasp of current security threats, mitigation measures and security vendors/technologies are required
• Ability to influence and drive Adoption of Enterprise Secure Software Development Processes and Tools
• Ability to prioritize activities to deliver Security by Design and Comprehensive, Effective Risk Management
• Experience working in fast-paced environments is required.
• Experience with SOX 404 controls is required.
• Previous experience developing effective and strong partnerships is required.
• Excellent communication and collaboration skills, ability to network and influence all levels
• Security certifications such as CRISC, CISSP, CCSP, ISSAP, CISM, etc. are preferred
• Creative problem-solving skills and understanding of complex environments (data, application, middleware, network) is preferred
• Experience in managing cybersecurity in life sciences environments is preferred

• Employees and/or eligible dependents may be eligible to participate in the following Company sponsored employee benefit programs: medical, dental, vision, life insurance, short- and long-term disability, business accident insurance, and group legal insurance.
• Employees may be eligible to participate in the Company's consolidated retirement plan (pension) and savings plan (401(k)).
• This position is eligible to participate in the Company's long-term incentive program.
• Employees are eligible for the following time off benefits:
  • Vacation - up to 120 hours per calendar year
  • Sick time - up to 40 hours per calendar year; for employees who reside in the State of Washington - up to 56 hours per calendar year
  • Holiday pay, including Floating Holidays - up to 13 days per calendar year of Work, Personal and Family Time - up to 40 hours per calendar year
• Additional information can be found through the link below. https://www.careers.jnj.com/employee-benefits