DescriptionInformation Security Manager - SC ManufacturingJohnson and Johnson is recruiting for an Information Security Manager supporting Janssen Global Manufacturing to be located in Poland (preferred). Other ASPAC locations will be considered.Are you passionate about joining a team of security practitioners committed to delivering high quality solutions to our business partners and customersThis position is part of the Information Security & Risk Management (ISRM) organization. We identify and help mitigate cyber security risk that adversely impact Janssen's Supply Chain operations worldwide. Cyber threats abound in today's world and this role is at the cutting edge of combating those threats to enable J&J to deliver life-saving medications, crucial medical devices and notable consumer products.Key Responsibilities:Your scope will be the EMEA/ASPAC Janssen manufacturing sites. You will encourage through authentic leadership, driving results, and showing dedication to our values.
- Responsible for advancing cybersecurity at manufacturing plants, across segments and operating companies by identifying key risks and controls
- Understand and promote risk management activities associated with external regulations and internal Johnson & Johnson policies such as IAPP, GxP, and GDPR
- Deliver cybersecurity risk assessments of manufacturing plants, contract manufacturing operations, and the technologies that run them while maintaining awareness of the changing threat landscape
- We maintain connections across peer groups to continuously understand new and emerging security technologies and solutions that are ground-breaking and significant velocity enablers for addressing and mitigating the risk landscape at JNJ
- We constantly strive to craft the administrative controls for cybersecurity
- Ability to work both independently and across cultures with a distributed team is significant
QualificationsQualificationsEducation:A BA/BS degree or equivalent experience is required for this position.Certifications in cybersecurity (CISM, CISSP, ISA-62443), audit (CISA), manufacturing or risk management (CRISC) are favored.
- ISA/IEC 62443 Cybersecurity Fundamentals Specialist
- ISA/IEC 62443 Cybersecurity Risk Assessment Specialist
- ISA/IEC 62443 Cybersecurity Design Specialist
Experience and Skills:
- Display the ability to build and develop a group of security practitioners, maintaining robust relationships with peers and business partners required
- At least five (5) years of cybersecurity focused on manufacturing, laboratories, or logistics, working with IT/OT, automation and engineering industrial controls is required.
- Advanced knowledge of information security processes and principles in explaining the business value of cybersecurity required.
- Operating knowledge of one or more manufacturing processes is very advantageous as is familiarity with the System Development Life Cycle.
- Ability to learn quickly, employing different techniques as appropriate
- Ability to independently author and edit documentation of high quality, accuracy and completeness required.
- Ability to communicate technical concepts to leadership in a clear and concise format.
- Experience with supply chain and manufacturing sites required, preferably across multiple sectors and the outstanding security requirements.
- Experience performing site-based risk assessments and providing results to senior leadership required.
- Experience with supply chain and manufacturing sites required, preferably across multiple sectors and the unique security requirements.
- Languages: Proficient in English
Other:Your dedication to integrity and the delivery of quality results supports our Johnson and Johnson credo.Superb communication, interpersonal, verbal and written skills are requiredAbility to relate technology solutions to business needs and articulate value to accelerate the adoption of security controls and practicesExperience mentoring colleagues across the organization and training on processes and technology.Domestic and international travel, up to 20% may be encouraged, to perform site assessments of J&J manufacturing facilities.