Lead Application Security

Johnson & Johnson is recruiting for an Information Security & Risk Management (ISRM) Application Security Lead, located in Raritan, NJ, Limerick, Ireland or São Paulo, Brazil. Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 130 years. We embrace research and science - bringing innovative ideas, products, and services to advance the health and well-being of people. At Johnson & Johnson, we believe good health is the foundation of vibrant lives, thriving communities and forward progress. That’s why for more than 130 years, we have aimed to keep people well at every age and every stage of life. Today, as the world’s largest and most broadly-based healthcare company, we are committed to using our reach and size for good. We strive to improve access and affordability, create healthier communities, and put a healthy mind, body and environment within reach of everyone, everywhere. Every day, our more than 130,000 employees across the world are blending heart, science and ingenuity to profoundly change the trajectory of health for humanity. Thriving on a diverse company culture, celebrating the uniqueness of our employees and committed to equity. Proud to be an equal opportunity employer.

**Responsibilities**:

- Operate security capabilities related to API Risk, Web risk, container risk, and Open Source risk
- Track and enforce remediation of vulnerabilities violating information security policies
- Produce valuable metrics to management and senior leadership
- Timely reporting of security incidents or significant security problems to appropriate personnel
- Act as a point of contact for security issues for their area of influence

**Qualifications**
- A Bachelor’s degree and a minimum of 4 years of experience in information security or information technology
- Knowledge of common information security management frameworks such as NIST, OWASP, SANS, or CIS
- Understanding of modern software development processes
- Comprehension of container orchestration methods and opportunities to automate security practices within them
- Understanding of the Open Source Software ecosystem including package managers, vulnerability assessment, and licensing risk
- Experience working with APIs and/or API Gateways
- Excellent written and verbal communication skills and high level of personal integrity
- Innovative thinking and ability to empower cross-functional, interdisciplinary teams
- Experience working in complex, fast-paced environments
- Big Picture Thinking / Attention to Detail - align strategic and tactical
- Previous experience developing effective and strong partnerships along with relationship building skills with business leaders and IT Partners
- Results Orientation/Sense of Urgency - ability to drive to short timelines
- Excellent interpersonal skills
- Creative problem-solving skills
- Customer focus (internal & external)
- Proven ability to influence/collaborate to get to desired result

Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

**Primary Location**
United States-New Jersey-Raritan-1003 US HIghway 202

**Other Locations**
Europe/Middle East/Africa-Ireland-Limerick, Latin America-Brazil-São Paulo

**Organization**
Johnson & Johnson Services Inc. (6090)

**Job Function**
Info Technology

**Requisition ID**
2206079578W