J&J Family of Companies - Director Cybersecurity - Supply Chain
Location: Pierre, South Dakota or Remote in the US
Description
Johnson & Johnson is currently seeking a Director, Cybersecurity for MedTech Supply Chain shared sites & capabilities part of Information Security & Risk Management (ISRM) organization. This candidate will have a diverse background with strong business acumen, technology, and security expertise.
This role will embed directly with our JJT and MedTech Supply Chain teams providing the security posture and the end-to-end security portfolio/capability roadmap to improve, identify, and remediate cybersecurity vulnerabilities.
Responsibilities:
- Provide early/proactive engagement with project teams to drive business understanding of the security capabilities and services needed for the project.
- Shape and drive the OT capability and drive CSRI security adoption across MedTech sites.
- Provide tailored security guidance based on risk and complexity.
- Lead the cyber operational portfolio from identification to completion.
- Establish data analytics to provide security posture across business units, functions, and sites.
- Proactively promote the importance of cybersecurity across the sector and sites.
- Assist the Security Operations Center (SOC) with security incident investigation activities.
- Drive business understanding of critical cybersecurity regulations and ensuring solutions are compliant.
- Support the global deployment of security initiatives with awareness sessions.
- Provide audit support as the liaison between GAA/JJRC and JJT/Business.
Qualifications:
- 10 years of related experience in leadership and execution roles within Cybersecurity and a background in Supply Chain required.
- Bachelor’s degree in computer science, information technology, business administration, or another rigorous discipline required; MBA preferred.
- 7 years of experience in design and implementation of enterprise security architecture and/or cloud security.
- Certifications in cybersecurity (CISM, CISSP, ISA-62443), audit (CISA), manufacturing or risk management (CRISC) are required.
- Excellent communication and collaboration skills.
- Strategic mindset to develop capability roadmaps.
- Experience in securing various levels of enterprise architecture.
- Strong understanding of security data protection and capabilities in a manufacturing and/or distribution site.
- Direct working experience with Supply Chain applications is required; Sarbanes-Oxley compliance and audit is preferred.
- Understanding of IEC 62443 and NIST 800-53 required.
- Fluency in Spanish is a plus.
Equal Opportunity Employer
Johnson & Johnson Family of Companies are equal opportunity employers. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, protected veteran status, disability status or any other characteristic protected by law.
Compensation and Benefits
The anticipated base pay range for this position is $142,000 to $244,950. This position is eligible for an annual performance bonus. Employees may be eligible for various Company-sponsored employee benefit programs.
#J-18808-Ljbffr