Careers

Cybersecurity Lead Analyst - Supply Chain Logistics

Get Referred

Job Description


Johnson & Johnson is currently recruiting for a Cybersecurity Lead Analyst - Supply Chain Logistics. This position is located in Raritan, NJ.

Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 130 years. We embrace research and science -- bringing innovative ideas, products and services to advance the health and well-being of people.

With $81.6 billion in 2018 sales, Johnson & Johnson is the world's most comprehensive and broadly-based manufacturer of health care products, as well as a provider of related services, for the consumer, pharmaceutical, and medical devices markets. There are more than 250 Johnson & Johnson operating companies employing over 125,000 people and with products touching the lives of over a billion people every day, throughout the world. If you have the talent and desire to touch the world, Johnson & Johnson has the career opportunities to help make it happen.

As a part of the Information Security Risk Management Supply Chain group, the IT Senior Analyst, Supply Chain – Logistics Cybersecurity is responsible for supporting the development and implementation of a green-field security program which spans enterprise IT, Industrial IoT and Distribution Center automation Operational Technology (OT) and Industrial Controls Systems. 

The role focuses on:
  • Providing consulting to IT and engineering teams on standards, design, implementation, and testing of secure networks, infrastructure, IT and OT technologies.
  • Performing assessments, design reviews and providing assurance over existing and future solutions and environments, ranking risks and providing coaching and guidance on remediation.
  • Gathering, analyzing and publishing metrics and reporting on security risk posture of J&J Supply Chain.

Responsibilities:

  • Provide security consulting and secure architecture design reviews on projects and new implementations; shape security user stories; provide security solution/remediation mentorship across Information Technology and Operational Technology solutions (applications, databases, infrastructure, networks, industrial Internet of Things, automation equipment).
  • Perform site, vendor and full-stack technology assessments. Rank risks; provide security remediation guidance across IT and OT; facilitate penetration testing.
  • Support identification and implementation of security tools and design patterns (e.g. ICE firewall deployments, IDR, AV, SIEM, deception technology).
  • Gathering, analyzing and publishing metrics and reporting on security risk posture of J&J Supply Chain.

Qualifications
  • A minimum of a bachelor's degree is required; a field in Cybersecurity or Computer Science is preferred.
  • A minimum of 5 years of experience working in IT or Engineering Automation with a cybersecurity focus is required.
  • Hands-on implementation level understanding of key security technologies and controls is required. (e.g. remote access, access control, firewalls, wireless security, IDP/IDR, anti-malware, patch management, encryption technologies, forensics etc.)
  • Experience analyzing IT and OT architecture to identify security gaps and designing solutions is required.
  • Experience performing security audits and assessments based on technical security frameworks such as NIST 800-53/800-82, ISO 27001, ISA-62443 is required.
  • Strong knowledge of the security landscape including trends in process, tooling and threats is required.
  • Understanding of cloud and virtualized environments is required.
  • Scripting and coding experience is preferred.
  • Experience using penetration testing and penetration testing tools is preferred.
  • Experience of working within an incident response team is preferred.
  • Big picture/Attention to detail – align strategic and tactical security aspects required.
  • Superb communication skills, able to network and influence at all levels of the organization, cross sector, cross-functionally and globally required.
  • This position will be located in Raritan, NJ and may require up to 15% travel.

Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
Primary Location
United States-New Jersey-Raritan-
Organization
Johnson & Johnson Services Inc. (6090)
Job Function
Information Security
Requisition ID
8318191023