Analyst, Cyber Risk Assessment

Johnson & Johnson-posted 4 days ago
$79,000 - $127,650/Yr
Full-time • Mid Level
Hybrid • Raritan, NJ
5,001-10,000 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com Johnson & Johnson is recruiting for a Cyber Security Analyst to join the Information Security & Risk Management (ISRM) team. This role is based in the United States with the Raritan, NJ location preferred. Are you ready to use your technical knowledge to change the trajectory of health for humanity? We have a position for you! Caring for the world, one person at a time inspired and united the people of Johnson & Johnson for over 130 years. We embrace research and science -- bringing innovative ideas, products, and services to advance the health and well-being of people. At Johnson & Johnson, we believe good health is the foundation of vibrant lives, thriving communities and forward progress. That’s why for more than 130 years, we have aimed to keep people well at every age and every stage of life. Today, as the world’s largest and most broadly-based healthcare company, we are committed to using our reach and size for good. We strive to improve access and affordability, create healthier communities, and put a healthy mind, body and environment within reach of everyone, everywhere. Every day, our more than 130,000 employees across the world are blending heart, science and ingenuity to profoundly change the trajectory of health for humanity. Thriving on a diverse company culture, celebrating the uniqueness of our employees, and committed to inclusion. Proud to be an equal opportunity employer! As an integral member of the ISRM Risk Assessment Center of Excellence team, you will identify and assess cyber risks within hosted solutions (e.g. SaaS) applications. In this role, you will work with a diverse, global team of skilled cyber security professionals.

  • Perform and lead technical application risk assessments, design reviews, risk rankings, and collaboration on remediation strategies as needed.
  • Perform in-depth reviews of control implementation evidence to assess control sufficiency, operating effectiveness, and any gaps requiring remediation.
  • Communicate cybersecurity risk assessment results to key stakeholders and management and provide input on remediation plans.
  • Enhance cyber risk assessment processes by defining and implementing process improvements.
  • Support the design of cybersecurity controls to ensure proper design implementation and assurance testing.
  • Offer consulting support to the larger cybersecurity team on risk assessment understanding and remediation.
  • A bachelor’s degree in Computer Science, Engineering or Information Security/Cybersecurity or equivalent degree is required.
  • 3+ years of direct cybersecurity risk assessment experience, including application of risk assessment/management concepts and internal controls and using a GRC tool to support security risk objectives.
  • Proficiency in conducting and leading application-level risk assessments, including data classification, risk scoring, and mitigation planning.
  • Ability to translate technical findings into business impact for key partners.
  • Strong analytical and problem-solving skills.
  • Strong interpersonal skills to build and maintain relationships with internal partners.
  • Security certifications such as CISSP, CCSP, CISA, CRISC etc. are preferred.
  • Experience securing cloud environments and/or SaaS platforms.
  • Understanding of secure software development life cycle (SSDLC), threat modeling, and vulnerability management.
  • Foundational knowledge of regulatory requirements (e.g., SOX404, Privacy, HIPAA, GxP, cyber regulations).
  • Experience with security standards and control frameworks (e.g. FAIR, ISO27001, NIST, SOC 2, OWASP Top 10, CSA STAR, etc.).
  • employees are eligible to participate in the Company’s consolidated retirement plan (pension) and savings plan (401(k)).
  • Vacation –120 hours per calendar year
  • Sick time - 40 hours per calendar year; for employees who reside in the State of Colorado –48 hours per calendar year; for employees who reside in the State of Washington –56 hours per calendar year
  • Holiday pay, including Floating Holidays –13 days per calendar year
  • Work, Personal and Family Time - up to 40 hours per calendar year
  • Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child
  • Bereavement Leave – 240 hours for an immediate family member: 40 hours for an extended family member per calendar year
  • Caregiver Leave – 80 hours in a 52-week rolling period
  • Volunteer Leave – 32 hours per calendar year
  • Military Spouse Time-Off – 80 hours per calendar year
Track Jobs with Teal

Job Search Resources

Resume Builder
Risk Analyst Resume Examples
Risk Analyst Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service