Manager, Business Information Security - TO&R - CBT

Company: Disability Solutions
Location: Raritan
Posted on: February 1, 2025

Job Description:

Johnson & Johnson is currently seeking a Manager, Business Information Security - TO&R - CBT to be located onsite in a North America, LATAM or EMEA J&J location.\r\r\rAt Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com/.\r\r\rFor more than 130 years, diversity, equity & inclusion (DEI) has been a part of our cultural fabric at Johnson & Johnson and woven into how we do business every day. Rooted in Our Credo, the values of DEI fuel our pursuit to create a healthier, more equitable world. Our diverse workforce and culture of belonging accelerate innovation to solve the world's most pressing healthcare challenges.\r\r\rWe know that the success of our business - and our ability to deliver meaningful solutions - depends on how well we understand and meet the diverse needs of the communities we serve. Which is why we foster a culture of inclusion and belonging where all perspectives, abilities and experiences are valued, and our people can reach their potential.\r\r\rAt Johnson & Johnson, we all belong.\r\r\rSummary\r\r\rThe Manager will drive Cyber Trust and Security by Design through consulting, engagement and assurance. Support the strategy for embedding cyber security into business initiatives, improving risk posture, secure critical intellectual property and assets, improve site security and enhance business resiliency. Provide assurance over the cybersecurity of the Technology Operations and Risk / Operational services with a focus on facilities and BMS (Building Management Systems). The role will be responsible for providing security consulting services for the CBT Operation teams.\r\r\rResponsibilities\r\r\rDrive the adoption of security industry best-practices, J&J security standards and capabilities with a focus on Quality, Site and Supply Chain services with a focus on physical security and facilities to ensure that critical information and assets are protected from cyber threats.\rEngagement: Build relationships and collaborate with J&J CBT IT and business partners to ensure security is integrated into all solutions and vendor relationships.\rProject Leadership: Lead and drive key projects in alignment with the ISRM security strategy to improve cyber capabilities and maturity.\rSecurity Assurance: Ensure controls are appropriately implemented, perform security testing (e.g., vulnerability scans), and ensure proper remediation.\rRegulatory Expertise: Demonstrated experience in implementing and managing security controls, conducting risk assessments, and responding to incidents.\rConsulting: Provide security consulting by crafting controls related to confidentiality, integrity, and availability, and assess risks against these requirements.\rCompliance: Ensure compliance with cybersecurity regulatory mandates and internal policies keeping in mind local country requirements where applicable.\rStandardization: Drive consistency and use of common security products, practices, and standards across the organization.\rCapability Adoption: Ensure the adoption of ISRM security capabilities across the business.\rThreat Intelligence: Deploy threat intelligence capabilities to monitor for new threats, vulnerabilities, and assess their potential impact.\rRisk Posture Assurance: Provide assurance leadership on the cybersecurity risk posture of J&J Operations' capabilities, including design reviews, risk assessments, and consultation on remediation.\rEducation and Training: Illuminate cybersecurity procedures and controls for internal partners awareness.\rMetrics Communication: Share valuable metrics and overview of risks with key stakeholders, including visibility of security incidents, vulnerabilities, and issues.\r\r\r

Keywords: Disability Solutions, East Orange , Manager, Business Information Security - TO&R - CBT, Executive , Raritan, New Jersey