Senior Director, Head Of Product Cyber Security

Johnson and Johnson is currently recruiting for a Senior Director, Head of Product Cyber Security within the Johnson & Johnson Technology (JJT) organization. This role will be based in Raritan, NJ or Irvine, CA. Remote work options may be considered on a case-by-case basis and if approved by the company.

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated and cured, where treatments are smarter and less invasive and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow and profoundly impact health for humanity. Learn more at https://www.jnj.com/ .

The Senior Director, Head of Product Cyber Security will lead a team of security engineering experts with responsibility for further developing and operating a comprehensive ISRM product security program, including product security architecture, cybersecurity engineering, threat modeling, penetration testing, standards compliance, cybersecurity incident response and the processes and procedures that support these initiatives. Additional responsibilities will include, but not be limited to:

• Define and implement strategic guidance, oversight and leadership to all product security activities including building, operating and maintaining the ISRM product security program with integration into all business unit Quality Management systems

• Ability to influence at the senior level (GOC/VP+) conveying cybersecurity risks to the organization, including executives, engineering teams, regulatory, quality, etc. while ensuring prioritization of cybersecurity in all aspects of product design

• Lead the Product Security organization, serving as the LT member across all functions and have deep knowledge of secure design methodologies and the latest methods and techniques in identifying security vulnerabilities, holding business leaders accountable to solve any risks as they are identified

• Front-facing technical cyber leadership with partners, researchers, vendors and regulatory agencies, as well as internal senior leaders

• Leader of leaders, highly technical engineers and cybersecurity professionals, with a globally dispersed team and several layers of leaders

• Drive the development of new tools, insights and understanding of cyber risk and forge partnerships with appropriate cybersecurity partners to keep ahead of threats and risks from the external environment