Tech, Risk & Governance
Johnson & Johnson Innovative Medicine•West Chester, PA
•Hybrid
About The Position
This role supports DePuy Synthes’ commitment to strong technology governance, risk management, and regulatory compliance within a global MedTech environment. The Tech, Risk & Governance professional partners across IT, business, and compliance teams to ensure technology‑enabled processes align with internal controls, external regulations, and enterprise risk standards. This position plays a key role in protecting the organization, enabling informed decision‑making, and supporting business continuity while operating in a highly regulated industry.
Requirements
- Bachelor’s degree required (Information Systems, Technology, Business, Risk Management, or related field).
- 2–5 years of experience in technology risk, IT governance, compliance, audit, or a related discipline.
- Working knowledge of risk management, internal controls, and governance frameworks.
- Experience supporting audits, assessments, or compliance activities in a regulated environment.
- Proficiency with standard business and reporting tools (e.g., Microsoft Office).
- Ability to manage multiple priorities in a fast‑paced environment.
- Strong analytical skills with the ability to document processes, risks, and controls clearly.
- Effective communication skills and ability to collaborate with cross‑functional teams.
Nice To Haves
- Advanced degree (MBA, MS, or similar) preferred.
- Experience in MedTech, healthcare, pharmaceutical, or other highly regulated industries.
- Familiarity with technology risk, cybersecurity, privacy, or data governance concepts.
- Exposure to frameworks such as SOX, ISO, NIST, COBIT, or similar governance standards.
- Experience supporting technology transformation or system implementation initiatives.
- CISA, CRISC, CISSP, or similar risk/governance credentials.
Responsibilities
- Support technology risk and governance activities to ensure alignment with company policies, regulatory requirements, and internal control frameworks.
- Assist in identifying, documenting, and monitoring technology‑related risks, issues, and remediation plans.
- Contribute to governance processes including risk assessments, audits, control testing, and compliance reviews.
- Partner with IT, cybersecurity, quality, and business stakeholders to promote consistent risk management practices.
- Maintain documentation related to policies, standards, procedures, and governance artifacts.
- Track and report key risk, compliance, and control metrics to support leadership decision‑making.
- Support continuous improvement initiatives related to technology governance, risk mitigation, and process efficiency.
- Apply Johnson & Johnson’s Credo and Leadership Imperatives in daily work and cross‑functional collaboration.
Benefits
- Consolidated retirement plan (pension)
- Savings plan (401(k))
- Long-term incentive program
- Vacation –120 hours per calendar year
- Sick time - 40 hours per calendar year (varies by state)
- Holiday pay, including Floating Holidays –13 days per calendar year
- Work, Personal and Family Time - up to 40 hours per calendar year
- Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child
- Bereavement Leave – 240 hours for an immediate family member: 40 hours for an extended family member per calendar year
- Caregiver Leave – 80 hours in a 52-week rolling period
- Volunteer Leave – 32 hours per calendar year
- Military Spouse Time-Off – 80 hours per calendar year
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
