Johnson & Johnson Careers

Director, Security Analytics Services

Raritan, New Jersey
Information Security


Job Description

Requisition ID: 3637181003

Johnson & Johnson is recruiting for a Director, Security Analytics Services. This position is located in Raritan, NJ and will require up to 20% domestic and international travel.
 
Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 125 years. We embrace research and science -- bringing innovative ideas, products and services to advance the health and well-being of people. Employees of the Johnson & Johnson Family of Companies work with partners in health care to touch the lives of over a billion people every day, throughout the world.

With $71.9 billion in 2016 sales, Johnson & Johnson is the world's most comprehensive and broadly-based manufacturer of health care products, as well as a provider of related services, for the consumer, pharmaceutical, and medical devices markets. There are more than 265 Johnson & Johnson operating companies employing approximately 126,500 people and with products touching the lives of over a billion people every day, throughout the world. If you have the talent and desire to touch the world, Johnson & Johnson has the career opportunities to help make it happen.

Thriving on a diverse company culture, celebrating the uniqueness of our employees and committed to inclusion. Proud to be an equal opportunity employer.

The Director, Security Analytics Services will be responsible for development and maintenance of the enterprise (cross-technology) security technology analytics solutions. The Director will drive technology and delivery security analytics solutions and automation technology services across key customer and stakeholders both within ISRM and broader JJT. 

The Director will be accountable for gathering input from key stakeholders and develop and maintain security analytics services that are leading edge and forward thinking as well as incorporating both advanced analytical solutions for machine learning and artificial intelligence and provide security automation and incident response integration services.  As well the director will be responsible to maintain architecture and detailed short and medium-term roadmaps of current technology solution capabilities as well as in-depth knowledge of key solutions in the security analytics space. 

As the Director, Security Analytics Services, you will: 
  • Direct, manage and maintain the enterprise security analytics service managing solutions deployed globally and directing operations including several hundred devices globally.
  • Be accountable for the security monitoring service for the JNJ public cloud IaaS environment.
  • Be accountable for the implementation and operations of an enterprise Threat Intelligence Platform.
  • Be accountable for the implementation and operations of security automation platform and development and support of these automation and integrations across the security analytics platform.
  • Be accountable for the deployment of a machine & account entity behavioral analytics capability for the enterprise.
  • Manage key vendor relationships across the service platforms that are being utilized to provide the service including the primary platform (RSA) as well as integration solutions. 
  • Work with vendors and technology providers to understand and shape future product roadmaps and feature improvement priorities to best meet JNJ security technology and ultimately address risk needs.
  • Maintain industry connection across peer groups and research teams to continuously understand new and emerging security technologies and solutions that maybe disruptive and significant velocity enablers for addressing and mitigating the threat / risk landscape at JNJ.
  • Partner with Service lifecycle team to ensure customer facing technology solutions have an integrated service definition, service blueprint and operating model.
  • Partner with the business, JJT, Business and supply chain automation teams, JJT TS and across ISRM to scale security technology solutions for all use cases and all environments that will provide a global view of technology use cases. 
  • Direct and lead the Information and Security Risk Management (ISRM) experts in supporting internal ISRM technology teams, identifying project investment priorities and will help support if needed internal control audits.
  • Serve as a technology expert and leader of ISRM technical subject matter experts and have direct interaction with JJT management and senior leadership. 
  • Serve as a mentor and technical expert to ISRM peers as well as junior members of internal staff.
Major Duties & Responsibilities
Approximate Percentage of Time -Tasks/Duties/Responsibilities:
  • 30% - Develop, maintain and publish a holistic and integrated enterprise security analytics service. 
  • 15% - Be accountable for the implementation and operations of security automation platform and development and support of these automation and integrations across the security analytics platform.
  • 15% - Works with vendors and technology providers to understand and shape future product roadmaps and feature improvement priorities to best meet JNJ security technology and ultimately address risk needs.
  • 10% -  Accountable for the implementation and operations of an enterprise Threat Intelligence Platform & the deployment of a machine & account entity behavioral analytics capability for the enterprise. 
  • 10% - Partner with Service lifecycle team to ensure customer facing technology solutions have an integrated service definition, service blueprint and operating model.
  • 10% - Partner with the business, JJT, Business and supply chain automation teams, JJT TS and across ISRM to scale security technology solutions for all use cases and all environments that will provide a global view of technology use cases.
  • 10% - Maintain industry connection across peer groups and research teams to continuously understand new and emerging security technologies and solutions that maybe disruptive and significant velocity enablers for addressing and mitigating the threat / risk landscape at JNJ.

Qualifications
  • A minimum of a Bachelor’s degree or equivalent is required. MS and/or advanced degree is preferred. 
  • A minimum of 10 years of related Information Management Experience is required.
  • A minimum of 5 years of people management experience is required.
  • Information Security and/or Risk Management certification preferred.
  • Deep experience and technical expertise in Information Security, Risk Management, and/or SOX Compliance, especially related to IT internal controls is required.
  • Broad exposure to internal and external audits, including audit preparation, support and remediation is preferred.
  • Detailed experience with tools and applications managing Governance, Risk and Compliance is preferred.
  • Working knowledge of COBIT and/or ITIL is preferred.
  • A background in GxP is preferred.
  • Knowledge of key business processes is preferred. 
  • Experience effectively working with virtual, global teams – including diverse groups of people with varied backgrounds and cultural experiences is required.
  • Experience effectively filling in for a senior-level vacancy is required.
  • Customer focus (internal and external) is required. 
  • Excellent communication skills, ability to network, interface and influence at all levels of the organization, cross sector, cross-functionally, and globally is required.
  • An attention to detail – align strategic and tactical is required.
  • Results orientation/sense of urgency and ability to drive tight timelines is required.
  • This position is located in Raritan, NJ and requires up to 20% domestic and international travel. 

Primary Location
United States-New Jersey-Raritan
Organization
Johnson & Johnson Services Inc. (6090)
Job Function
Information Security
Requisition ID
3637181003