Manager, Business Information Security - CBT

Company: Johnson & Johnson
Location: New Brunswick
Posted on: March 9, 2025

Job Description:

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at Job Function:Technology Enterprise Strategy & SecurityJob Sub Function:Security & ControlsJob Category:Scientific/TechnologyAll Job Posting Locations:New Brunswick, New Jersey, United States of America, Raritan, New Jersey, United States of AmericaJob Description:We are searching for the best talent for a Manager, Business Information Security - CBT to be in Raritan or New Brunswick, NJ.SummaryWe are seeking a skilled Cybersecurity Professional to join our dynamic Business Information Security team focusing on data science and analytics. The ideal candidate will possess a strong background in cybersecurity principles and practices, combined with an understanding of data management and analysis. You will collaborate closely with data scientists, analysts, and IT teams to ensure the integrity, confidentiality, and availability of sensitive data.Responsibilities

• Develop and implement security protocols that safeguard data throughout its lifecycle, from collection to analysis and storage.
• Assess and mitigate security risks associated with data science projects and analytics tools.
• Monitor and analyze security events and incidents related to data systems, providing timely responses and documentation.
• Support regulatory audits and assessments of data systems and software tools, and provide risk mitigation plans for security risks.
• Provide cybersecurity training and awareness for data science teams to ensure adherence to best practices.
• Collaborate with IT and data governance teams to establish robust data security policies and procedures.
• Keep up to date with the latest cybersecurity threats, vulnerabilities, and technologies relevant to data science and analytics.
• Work with data teams to embed security measures in data pipelines, ensuring compliance with relevant regulations (e.g., GDPR, HIPAA).
• Provide assurance leadership on the cybersecurity risk posture of business capabilities, including security consulting, design reviews, ranking risks, consulting and assurance on remediation.
• Support vulnerability management, third party risk remediation and cyber incidents investigations as needed.
• Enable ISRM capabilities for the business including awareness, business impact, exceptions handling (e.g., Safe Data, Entra).
• Support for cybersecurity, and internal control readiness for Internal Audit and External regulatory audits.
• Provide metrics and reporting to ISRM and Business leadership on status of compliance to cybersecurity IAPP requirements and risks.Qualifications
  • Education: BA/BS in Computer/Data Science, Engineering, IT Security or alike highly desired but not required with appropriate amount of experience; MS/advanced degree preferred.
  • Experience: 5+ years of experience in Information Security, IT Risk Management, or IT with growing technical responsibilities required.
  • Expertise: Shown capabilities in information technology and security (incl. controls) with a solid grasp of traditional and emerging threats, especially in protecting critical data required. Experience with data science, analytics tools and the emerging field of artificial intelligence is highly preferred.
  • Communication: Superb communication and collaboration skills with the ability to network and influence at all levels is required (both IT and business).
  • Collaboration: Ability to influence and drive Adoption of Enterprise Secure Software Development Processes and Tools.
  • Team Experience: Experience working as part of a high-performing team is required.
  • Business Knowledge: Knowledge of key business processes preferred.
  • Problem-Solving: Creative problem-solving skills and understanding of complex environments (data, application, middleware, network) preferred.
  • Certifications: Security certifications such as CISSP, CCSP, CRISC, CISM, are preferred.The anticipated base pay range for this position is: $100,000- $172,500.The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation's performance over a calendar/performance year. Bonuses are awarded at the Company's discretion on an individual basis.
    • Employees and/or eligible dependents may be eligible to participate in the following Company sponsored employee benefit programs: medical, dental, vision, life insurance, short- and long-term disability, business accident insurance, and group legal insurance.
    • Employees may be eligible to participate in the Company's consolidated retirement plan (pension) and savings plan (401(k)).
    • Employees are eligible for the following time off benefits:
    • Vacation - up to 120 hours per calendar year.
    • Sick time - up to 40 hours per calendar year; for employees who reside in the State of Washington - up to 56 hours per calendar year.
    • Holiday pay, including Floating Holidays - up to 13 days per calendar year of Work, Personal and Family Time - up to 40 hours per calendar year.
    • Additional information can be found through the link below.
      #J-18808-Ljbffr

Keywords: Johnson & Johnson, New Brunswick , Manager, Business Information Security - CBT, Executive , New Brunswick, New Jersey