Manager, Network Security Engineering

Johnson & Johnson is looking for a **Manager, Network Security Engineering** to be a part of a fast-paced, innovative, and highly visible team. The position will be in Raritan, New Jersey or São José dos Campos, São Paulo, Brazil or remote within the US.

**Remote work options may be considered on a case-by-case basis and if approved by the Company.**

The Manager, Network Security Engineer will play a key role in the J&J Information Security and Risk Management organization. Her/His responsibilities include Engineering, Deployment, and product ownership of Network Access Control (NAC) security technology, and any required bi-directional integration with other security technology. Role will be responsible for the implementation of a zero-trust infrastructure that provides security capabilities across the enterprise with a primary emphasis on Network Access Control Security, Zero-Trust Network Access, Network flow traffic analysis, inspection technologies including next generation security technologies. This individual will also be designated as NAC Product Manager and will be accountable for Designing, Building, Development and Operational Support of network security related products and technologies. She/He will partner with other Information Technology groups, including, End-User, Network Services, Cloudx and Enterprise Technology to ensure Security products are deployed and aligned with all aspects of core infrastructure capabilities.

**Key Responsibilities**
- Own Network Security Products and support Engineering activities, including:

- Plan, Design, Engineer, Test and “package”, as well as Support and Manage product features, integration strategies and capabilities of Network Security technologies
- Create required documentation and standard operating procedures in support of Network Security products and technologies
- Partner with other IT and Business groups (including End-User, Network Services, CLOUDx and Enterprise Technology, external providers, vendors) to ensure effective and efficient design and functionality
- Manage Day to Day Security Product vendors ensuring prompt delivery of quality services, features, capabilities, bug fixes, etc. by developing and managing key performance indicators, and quality metrics
- Perform L3 Engineering related activities in support of the environment including troubleshooting issues and own escalation of issues as needed with respective vendors
- Make decisions related to the effectiveness of key security products and technologies for J&J
- Use their judgement and expertise to work through design and implementation issues throughout projects, escalating to the project team and management as appropriate
- Be responsible for end-to-end management of Network Security Products and, in particular, the Network Access Control technology (Policy lifecycle management, device profiling and visibility, security posture checks ensuring security-compliance by device type, operating system, and other networking access controls)
- Recommend configuration and enhancements for Network Security Products, based on contextual information and current Cybersecurity threat landscape
- Assist in the strategic information security direction for Johnson & Johnson and present to management, recommend new policy requirements and recommend program management decisions on relevant security programs
- Partner with Information Technology group and Information Security during incident response activities
- Assist with security events/incidents, supporting incident response activities with Cyber Security Operations as appropriate
- Identify operational deficiencies, develop greater level of automation and API based integration
- Participate in assigned security related projects as the Information Security owner and SME of these technologies, responsibilities include, but not limited to, defining required resources for completion, and identifying and highlighting possible technology, resource, and/or skill gaps
- Provide input on the risk profile, emerging security trends (internal and external) and risk management strategies
- Recommend configuration and enhancements to ensure protection and productivity for Isolated Computing Environments (ICE)

**Qualifications**
- 7+ years’ experience in Network Security or related field with at least 4+ years of experience with Network Access Control technologies, Zero-Trust Network Access and/or Secure Services Information Security and/or Network Engineering experience.
- Bachelor’s Degree in Computer Science, Engineering, Risk Management, Cyber Security, or a related field
- Engineering, Deployment and Support experience with key security products and/or industry equivalent is required
- Experience in security tools / product roadmap development
- Understanding and deployment of Cisco ISE in a distributed design
- Experience in End user client provisioning for certificate installation and management
- Understanding of network routing/switc