Sr. Manager, Business Info Security EMEA

工作内容

Johnson and & Johnson, through its operating companies, is the world’s most comprehensive and broadly-based manufacturer of health care products, as well as a provider of related services, for the consumer, pharmaceutical, and medical device markets. We strive to provide scientifically sound, high quality products and services to help heal, cure disease and improve the quality of life. Do you want to be part of an organization that is thriving on a diverse company culture, celebrating the uniqueness of our employees and committed to inclusion? Then join us! We are proud to be an equal opportunity employer. The Sr. Manager, ISRM BIS EMEA is a results-oriented self-starter who enjoys a fast-paced environment and is looking for opportunity to influence change in an established organization. She will have responsibility for all aspects of identifying and managing security risk and serve as the focal point for all information protection matters. This role will support the Johnson & Johnson EMEA ISRM BIS unit, focusing on the Pharma sector and will be located in Beerse (Belgium), Zug (Switzerland), or Neuss (Germany). Key Responsibilities: Responsible for leading BIS consulting and assurance activities and projects across one of the business segments. Actively lead and collaborate with Business and IT partners in the development of secure information systems and solutions in line with organization’s cybersecurity architecture, security policies and regulatory requirements. Act as a liaison to the business and IT to coordinate and manage security and risk management activities as required. Lead efforts to apply risk management processes in projects, identify risks, recommend solutions, validate remediation plans and facilitate implementation. Participate in business planning to ensure the integration of security measures in business projects during the design, development and deployment phases to ensure confidentiality, integrity and availability of applications and data are adequately protected against cybersecurity threats. Provide expert guidance in Cybersecurity & Risk Management to ensure that technology solutions meet all requirements and standards. Ensure that J&J information assets are appropriately identified, valued, and protected by complying with and enforcing all local and worldwide security policies and external regulations such as EU NIS Directive, HDS, PGSSI-S, GDPR, etc. and standards such as ISO, NEN, NIST, PCI, HiTrust. Work with IT, QA, Regulatory, CIA and business colleagues to ensure audit readiness and to prepare for internal and external audits. Facilitate education and training to the organization on cybersecurity procedures and controls. Lead a small team, provide leadership and drive employee engagement; drive a focus on Talent Development to develop a diverse, regional IT talent pipeline. Communicate with and report valuable metrics to management and senior leadership. Timely reporting of security incidents or significant security problems to appropriate personnel. Serve as the main point of contact for security issues for their area of influence. Qualifications Qualifications: Education: A Bachelor’s degree is required. A major in Cybersecurity or Computer Science is highly preferred. Experience and Skills: Required: A minimum of 10 years of progressive experience in Information Security & Risk Management and/or IT. Previous experience developing effective and strong partnerships along with relationship building skills with business leaders and partners. Solid understanding of current security threats, mitigation measures and security vendors/technologies. Experience in design and implementation of enterprise (security) architecture, cloud security (e.g. AWS, Azure) and/or development of IT solutions or services to protect data, application, host, middleware, network, Infrastructure. Experience working in complex, fast-paced environments. Experience supporting, leading and influencing security assessments (e.g. SOC Type 2 reporting, PCI, ISO 27001). Big Picture Thinking / Attention to Detail – align strategic and tactical Strong experience in People Management! Results Orientation and ability to drive to short timelines. Creative problem-solving skills. Customer focus (internal & external). Superb communication, social and collaboration skills, able to network and influence various levels of the organization, cross sector, cross-functionally and globally. Proven ability to influence/collaborate to get to desired result. Preferred: Experience with implementation or review of compliance with international security standards or regulations. Security certifications such as CISSP, CCSP, ISSAP, CISM, etc. Other: Fluency in English and preferably proficiency in German or French. Flexible working environment! Up to 10% travel may be expected Primary Location Belgium-Antwerp-Beerse- Other Locations Europe/Middle East/Africa-Germany-North Rhine Westphalia-Rhein-Kreis Neuss Organization Janssen Pharmaceutica N.V. (7555) Job Function Info Technology Requisition ID 2105964123W