Johnson & Johnson is currently recruiting for a Sr. Manager, Incident Response Team within its Information Security and Risk Management (ISRM) group. The preferred location is Raritan, NJ. Remote work options may be considered on a case-by-case basis and if approved by the Company.
Johnson & Johnson, through its operating companies, is the world’s most comprehensive and broadly based manufacturer of health care products, as well as a provider of related services, for the consumer, pharmaceutical, and medical devices and diagnostics markets. We strive to provide scientifically sound, high quality products and services to help heal, cure disease and improve the quality of life. Thriving on a diverse company culture, celebrating the uniqueness of our employees and committed to inclusion. Proud to be an equal opportunity employer.
Johnson & Johnson recognizes that information is a critical business asset and that our ability to manage, control and protect this asset will have a direct and significant impact on our success as a business.
The Sr. Manager – Incident Response will be a member of the Cyber Security Operations Center whose responsibilities include incident response, forensics, insider threat investigation, malware analysis, root cause analysis, and case support. The Sr. Manager will oversee the team responsible for incident response activities, incident investigation and utilize the entire security stack to determine system compromise or potential gaps in security controls within the Cyber Security Operations Center. In addition, the Sr. Manager must have excellent communication (oral and written) skills, leaderships skills and business relationship skills to coordinate all remediation efforts during a security incident. Collaborate with other ISRM team members to provide guidance in remediation of security findings.
Key Responsibilities:
- Incident Response Activities – lead a team that manages containment, analysis and remediation efforts during incident response activities
- Lead highly sensitive, complex, and confidential cyber investigations into incidents of data loss and intellectual property theft, technology misuse, and malware.
- Knowledge of incident handling and incident response. Experience providing intelligence analysis support as part of a team that performs in-depth technical analysis of network intrusion incidents
- Support Insider Threat Investigations and Hunting Activities – Analyze systems identified as potentially compromised. Conduct and lead forensic investigations using forensic tools such as EnCase, Axiom, and logs collected by the SIEM tool or from disparate sources.
- Lead team in identification of incident root cause. Provide strategic analysis and guidance to lead in the implementation of protect and detect strategies to prevent similar future incidents.
- Possess a solid understanding of analytic tradecraft, deductive reasoning, and critical thinking skills
- Think strategically in identifying improvement opportunities to drive the team strategy and vision.
- Support those affected by incidents and colleagues on security issues and related internal control gaps.
- Advise leadership on the findings of investigations and liaise with law enforcement as necessary
- Solve complex problems with data from various sources and provide recommendations to leadership on the appropriate strategy
- Effectively communicate at all levels of the company, including at Executive level
- Ability to write and present incident summaries and briefings for senior management.
- Partner with IT contacts, business owners, end users and ISRM during response activities.
- Partner with ISRM technology and Business facing teams. As well as directly with business leaders including Legal, Privacy Internal Audit, etc.
- Metrics – Identify and communicate Key Performance Indicators to highlight improvement opportunity areas and trending data.
- Create or update procedural documentation on incident response activities and overall team improvement opportunities.
- Perform other work-related duties as assigned.
Qualifications
- Bachelor’s degree is required.
- Minimum of 10 years of overall professional IT experience is required.
- Minimum of 5 years of IT Security experience in Incident Response and/or in a Security Operations Center is preferred.
- Knowledge of incident response processes is required.
- Experience leading and managing a team is required
- Strong communication, influencing and presentation skills are required.
- Strong collaboration, leadership and business relationship skills are required.
- Possessing the credibility and presence to act as subject matter expert is required.
- Demonstrated experience in the creation and “maintenance” of operational documentation such as Standard Operating Procedures (SOP) and/or Work Instructions (WI) is preferred.
- Strong IT experience and the ability to articulate the relationship between the various data sources is required.
- Demonstrated time management ability, juggling multiple priorities over spans of time is required.
- Demonstrated effectiveness within large, diverse, operating environments and the ability to influence others is required.
- Any of the following Certifications- CISSP, CISM, GCIH, GCFE or equivalent is preferred.
- Travel varies depending on base office location, but may be up to 5-10%.
- U.S. citizenship is preferred in order to obtain any necessary security clearance
At Johnson & Johnson, we’re on a mission to change the trajectory of health for humanity. That starts by creating the world’s healthiest workforce. Through cutting-edge programs and policies, we empower the physical, mental, emotional and financial health of our employees and the ones they love. As such, candidates offered employment must show proof of COVID-19 vaccination or secure an approved accommodation prior to the commencement of employment to support the well-being of our employees, their families and the communities in which we live and work.
Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
For more information on how we support the whole health of our employees throughout their wellness, career and life journey, please visit www.careers.jnj.com.
Requisition ID
2206007692W
More Information
- Address Raritan, NJ, USA
- Salary Offer $100.000 ~
- Experience Level Senior
- Total Years Experience 10-20