Sr. Manager, Information Security Officer

At Johnson & Johnson, we believe health is everything.

Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com

Job Function:
Technology Enterprise Strategy & Security

Job Sub Function:
Security & Controls

Job Category:
Scientific/Technology

All Job Posting Locations:
Seoul, Korea, Republic of

Job Description:

Do you want to be part of an organization that is thriving on a diverse company culture, celebrating the uniqueness of our employees and committed to inclusion? Then join us! We are proud to be an equal opportunity employer.

We are searching for the best talent for Sr.

Manager, Chief Information Security Officer.

The Sr.

Manager, CISO (Chief Information Security Officer) enables a framework of robust security and governance for assessing risks to eliminate threats and takes accountability for Korea business operations in the challenging business landscape and evolving compliance regulations.

As a senior manager, the CISO is responsible for establishing and maintaining a company-wide information and security management program to oversee the protection of people, assets and technology from malicious attacks and to ensure that information assets are adequately protected to meet local privacy and security regulations.

The CISO also serves as a focal point for all assurance activities related to the confidentiality, integrity and availability of customer/patient, business partner, employee and business information in compliance with the J&J Information Asset Protection Policies.

A key element of the CISO's role is working with executive management to determine acceptable levels of risks for the organization.

Key Responsibilities:

- Appointed to local South Korea CISO for cross sector J&J Korea companies and will follow below roles and responsibilities as defined by South Korea Privacy and Security Laws:



* Establish, manage, and operate information security management system.


* Analyze, assess, and improve information security weaknesses.


* Prevent and respond to data breach or data incidents as a focal reporting point for any security related incidents.


* Prepare preventive information protection measures, design, and implement security measures, etc.


* Review of information security risk.


* Carry out other vital measures for information security as required by Korea PIPA and Network Act, including ISMS certification, annual information security public disclosure to the Ministry of Science & ICT, cybersecurity insurance.

- Leading the response to inquiries or investigations from ...