Principal Security Architecture

**Job Function**:Technology Product & Platform Management**Job Sub Function**:Business Systems Analysis**Job Category**:People Leader**All Job Posting Locations**:São José dos Campos, São Paulo, BrazilJohnson & Johnson is currently seeking a Principal Security Architect to join our Information Security Risk Management (ISRM) team located in **San Jose Dos Campos, Brazil**.At Johnson & Johnson, we believe health is everything.Our strength in healthcare innovation empowers us to further a world where sophisticated diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal.Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow and profoundly impact health for humanity.In this dynamic position, you will **craft**, **refine**, and **elevate** enterprise security architectures, **driving** the innovative design and seamless integration of ground breaking security capabilities across a diverse portfolio of security products and platforms in-use globally by Johnson & JohnsonWe seek hardworking, hands-on architects who can **bridge** product strategy with enterprise security—ensuring that both internally developed and third-party solutions **exceed** the highest standards of resiliency, privacy, and risk mitigation**Key Responsibilities**:- Author, maintain, and update reference architecture documentation for assigned security products.- Collaborate with internal security product operators and engineers to implement robust security technology solutions.- Develop architecture plans addressing technical and functional requirements.- Combine technical expertise, critical thinking, and leadership to ensure effective protection across key product areas.- Drive the design, implementation, and optimization of security solutions as an embedded squad member.- Ensure alignment of security technology products with global security strategy needs.**Qualifications**:**Education**:- Bachelor's degree experience in computer science, Information Security, or a related field.- Certifications such as SABSA, CISSP, AWS/Azure Architect, TOGAF, or CCSP**Experience and Skills**:**Required**:- 10+ years of cybersecurity experience, including 5+ years in a security architecture or security engineering leadership role.- In-depth Knowledge security frameworks and standards, such as ISO *****, NIST Cybersecurity Framework, CIS Controls, and SOC2.- Proficiency in aligning security architecture with security strategy, risk management policies, and regulatory requirements (e.g., HIPAA, GDPR, FDA, SOX).- Deep experience information security platforms (e.g., SIEM, EDR/XDR, CASB, CNAPP, IAM), and experience integrating them and driving adoption within sophisticated environments.- Proven track record of design and evaluation of technical controls to meet compliance obligations and mitigate enterprise risk.- Solid grasp of Lean IX, including experience maintaining Fact Sheets.- Demonstrated ability to adapt to changing security landscapes, evolving technologies, and new regulatory requirements.- Effectively works with virtual, global teams - including diverse groups of people with varied backgrounds and cultural experiences.**Preferred**:- Masters or Doctorate degree preferred.- Experience authoring or approving reference architecture documents for endpoint detection tools, network security products, or security telemetry solutions.- Experience with Information Security programs in GxP environments.- Experience with cybersecurity programs in Operational Technology (OT) environments.**Other**:- Excellent written, verbal and influential communication skills with the ability to work effectively with senior leaders, engineers, and business teams- Travel expectation will be 10% or less to locations within the United States.Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer.All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.