Sr. Manager, Supply Chain Cybersecurity (IT and OT) - ASPAC

At Johnson & Johnson, we believe health is everything.

Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com

Job Function:
Technology Enterprise Strategy & Security

Job Sub Function:
Security & Controls

Job Category:
People Leader

All Job Posting Locations:
Beijing, China, Shanghai, China, Singapore, Singapore, Suzhou, Jiangsu, China

Job Description:

Sr.

Manager, Supply Chain Cybersecurity (IT and OT) - ASPAC

Johnson & Johnson is currently seeking a Senior Manager in the Information Security & Risk Management (ISRM) organization supporting the MedTech Supply Chain – ASPAC.

This position can be based in China or Singapore.

This candidate will have a diverse background with strong business acumen, technology, and security expertise.

They will be a strategic thinker who leads with impact inclusively, driving intentional change proactively, and be driven to keep up with industry trends in cybersecurity.  This role will embed directly with our J&J Technology and MedTech Supply Chain teams providing the security posture and the end-to-end security portfolio/capability roadmap to improve, identify, and remediate cyber security vulnerabilities.

You will work across ISRM demonstrating authentic leadership, driving results, and showing dedication to our Credo.

Your scope includes regional cyber security responsibility for MedTech Manufacturing sites, Distribution sites (Internal and External / 3PL), Application Security, and Third-Party Risk Management.

Responsibilities:


* Champion a Secure-by-Design approach with stakeholders to embed security capabilities and services within business initiatives.


* Perform cybersecurity risk assessments of IT and OT assets within the manufacturing and distribution sites.


* Drive the OT cybersecurity capability adoption across sites to secure IT and OT assets and enable safe & secure innovation.


* Provide tailored security guidance (based on risk and complexity) by interpreting and applying the internal cybersecurity policy requirements and standards for innovative IT and OT initiatives.


* Partner with security, business, and technology teams to identify, assist with the creation of mitigation and remediation plans, and track the closure of cybersecurity risks.


* Provide regular cybersecurity posture updates to business, function, site leadership and regional teams.


* Create site-specific cybersecurity roadmaps to provide input into the cybersecurity business planning process and improve the cybersecurity posture of the sites


* Promote the impor...