Director Cybersecurity - Supply Chain

Company: Disability Solutions
Location: Raritan
Posted on: October 11, 2024

Job Description:

Johnson & Johnson is currently seeking a Director, Cybersecurity for MedTech Supply Chain shared sites & capabilities part of Information Security & Risk Management (ISRM) organization. This position can be based in Raritan, New Jersey or remotely in the US.This candidate will have a diverse background with strong business acumen, technology, and security expertise. He/she will be a strategic thinker who leads with impact inclusively, driving intentional change proactively, and be result driven keeping up with industry trends in cybersecurity. This role will embed directly with our JJT and MedTech Supply Chain teams providing the security posture and the end-to-end security portfolio/capability roadmap to improve, identify, and remediate cyber security vulnerabilities.You will manage and inspire a team of 3-5 direct reports through authentic leadership, driving results, and showing dedication to our Credo. Your site scope includes global accountability for 85+ internal shared Distribution and Manufacturing sites with direct responsibility for North America distribution sites + shared MedTech applications inclusive of Sarbanes-Oxley + accountability for MedTech strategic programs ensuring security by design.Responsibilities:

• \r
• Provide early/proactive engagement with project teams to drive business understanding of the security capabilities and services needed for the project; E2E support for large programs.
• Shape and drive the OT capability and drive CSRI security adoption across MedTech sites to secure IT/OT assets and enable safe & secure innovation.
• Provide tailored security guidance (based on risk and complexity) - Interpret & apply the IAPP requirements and standards for unique OT (Operational Technology) initiatives and cutting-edge or OT Specific technologies such as OT Proxy or vendor specific remote access requirements
• Lead the cyber operational portfolio from identification > consulting remediation plan > completion partnering across ISRM, business, and technology teams.
• Establish data analytics to provide security posture across business units, functions, and sites.
• Proactively promote the importance of cybersecurity across the sector and sites.
• Build a community of practice (CoP) across CoEs (MT, IM, Corporate) to discuss SOX changes, IT/OT new technologies, and Tools to share experiences and learnings.
• Assist the Security Operations Center (SOC) with security incident investigation activities; work closely with business teams to support affected users and provide liaison with central investigation team
• Drive business understanding of critical cybersecurity regulations and ensuring solutions are compliant (NIST, NIS2, Safe Data, etc.).
• Support the global deployment of security initiatives with awareness sessions, identify alternative ways of working to avoid business disruptions and review exception requests
• Provide audit support as the liaison between GAA/JJRC and JJT/Business from pre-work to consulting remediation plans.\r\r

Keywords: Disability Solutions, Philadelphia , Director Cybersecurity - Supply Chain, Professions , Raritan, Pennsylvania