Location: Titusville,FL, USA
Johnson & Johnson is recruiting for a Sr. Manager Cybersecurity, J&J Innovative Medicine Commercial to be located in Titusville, NJ or Raritan, NJ with travel between sites expected.
At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at
For more than 130 years, diversity, equity & inclusion (DEI) has been a part of our cultural fabric at Johnson & Johnson and woven into how we do business every day. Rooted in Our Credo, the values of DEI fuel our pursuit to create a healthier, more equitable world. Our diverse workforce and culture of belonging accelerate innovation to solve the world's most pressing healthcare challenges.
We know that the success of our business - and our ability to deliver meaningful solutions - depends on how well we understand and meet the diverse needs of the communities we serve. Which is why we foster a culture of inclusion and belonging where all perspectives, abilities and experiences are valued, and our people can reach their potential.
At Johnson & Johnson, we all belong.
Position Overview:
Johnson & Johnson is seeking a dedicated cybersecurity professional with a background in HIPAA security rules to join our team as the Sr. Manager Cybersecurity, Information Security & Risk Management (ISRM), J&J Innovative Medicine (J&JIM) Commercial. The complete candidate is a self-starter who thrives in a fast-paced environment and is eager to inspire change within an established organization. This position is tasked to identify and handle security risks serving as the domain authority for all security matters.
Key Responsibilities:
* Engagement: Build relationships and collaborate with J&J Innovative Medicine Patient Service Center IT and business partners to ensure security is integrated into all solutions and vendor relationships.
* Project Leadership: Lead and drive key projects in alignment with the ISRM security strategy to improve cyber capabilities and maturity.
* Security Assurance: Ensure controls are appropriately implemented, perform security testing (e.g., vulnerability scans), and ensure proper remediation.
* Regulatory Expertise: Demonstrated experience in implementing and managing security controls, conducting risk assessments, and responding to incidents, specifically within the context of the HIPAA Security Rule.
* Consulting: Provide security consulting by crafting controls related to confidentiality, integrity, and availability, and assess risks against these requirements.
* Compliance: Ensure compliance with cybersecurity regulatory mandates and internal policies.
* Standardization: Drive consistency and use of common security products, practices, and standards across the organization.
* Capability Adoption: Ensure the adoption of ISRM security capabilities across the business.
* Threat Intelligence: Deploy threat intelligence capabilities to monitor for new threats, vulnerabilities, and assess their potential impact.
* Risk Posture Assurance: Provide assurance leadership on the cybersecurity risk posture of J&J IM Patient Service Center capabilities, including design reviews, risk assessments, and consultation on remediation.
* Education and Training: Illuminate cybersecurity procedures and controls for internal partners awareness and understanding.
* Metrics Communication: Share valuable metrics with senior leadership, including visibility of security incidents, vulnerabilities, and issues.
* Business Planning: Participate in business planning to ensure information security and risk management capabilities are included.