Sr Manager, Product Security Risk Management Engineer

Company: Disability Solutions
Location: Raritan
Posted on: October 11, 2024

Job Description:

Johnson and Johnson is currently recruiting for a Senior Manager, Product Security Risk Management Engineer within the Johnson & Johnson Technology (JJT) organization. This role will be based in Raritan, NJ, Irvine, CA or remote US.At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated and cured, where treatments are smarter and less invasive and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow and profoundly impact health for humanity. Learn more at https://www.jnj.com/ .The Senior Manager, Product Security Risk Management Engineer will be responsible for implementation of the ISRM Product Security Risk Management Process. This includes identifying key strategies and goals, collaborating with internal organizations on existing process and policy enhancements, creating and communicating metrics to MedTech management, identifying communications plans and raising overall awareness of the capability. Specific responsibilities include supporting MedTech Business Units throughout a medical device & digital health solution lifecycle to establish vulnerability management solutions, review product security requirements and recommend security design solutions throughout dispositioning and lead the coordinated vulnerability disclosure process.The key responsibilities will be:

• \r
• Reporting directly to the Product Security Program Operations Director, this role spearheads the integration of vulnerability management and leads initiatives to bolster the cybersecurity resiliency across the MedTech business.
• Mature ISRM product security vulnerability risk management process and drive changes into Business Unit Quality Management Systems
• Develop and lead risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever high exploit vulnerabilities occur.
• Create risk management metrics and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
• Ensure standardization of security reviews and identification of security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
• Lead the creation of product security vulnerability management strategy and training through all ISRM product security.
• Identify key tooling for vulnerability identification through the total product lifecycle.
• Identify key research sources, analysis material, and correlation tooling to further develop the vulnerability management process.
• Lead the ISRM MedTech Coordinated Vulnerability Disclosure Process
• Applies ISRM product security policies and standards when performing all duties.\r\r

Keywords: Disability Solutions, Westport , Sr Manager, Product Security Risk Management Engineer, Engineering , Raritan, Connecticut