Manager, Product Security DevSecOps

$99,000 - $170,200/Yr

Johnson & Johnson - Oklahoma City, OK

posted 16 days ago

Full-time - Manager
Oklahoma City, OK
Chemical Manufacturing

About the position

The Manager, Product Security DevSecOps at Johnson & Johnson is responsible for implementing enterprise Product Security tooling for MedTech. This role involves collaborating with internal organizations to enhance processes and policies, creating metrics for management, and raising awareness of security capabilities. The position supports business units throughout product development phases, ensuring security requirements are met and automation of security tooling is integrated into development pipelines.

Responsibilities

  • Design solutions to enable global cloud provisioning and migration
  • Design and build software tools to enable self-service and no ops capabilities
  • Guide teams working with Azure PaaS and Atlassian Services
  • Guide team members working with Azure in problem solving and implementation
  • Be a subject matter expert on Azure IaaS and PaaS services for the MedTech platform engineering team
  • Work with tools such as Git, Azure DevOps, Artifactory, and other similar tooling
  • Build and consume REST APIs
  • Contribute to dev ops workflows through expert guidance and support for MedTech business unit security automation
  • Apply ISRM product security policies and standards when performing all duties
  • Contribute to enhanced systems reliability and availability.

Requirements

  • Bachelor's degree or equivalent in Computer Science or similar engineering discipline
  • 5 years of DevOps experience
  • 2 years of DevSecOps experience
  • 2 years of software development experience
  • Understanding of DevOps pipeline and CI/CD tools and ability to mentor and teach others complex CI/CD and application concepts
  • Working knowledge of Waterfall, Agile, and primarily DevOps development methodologies
  • Working knowledge of tools such as Git, Azure DevOps, Artifactory, and other similar tooling
  • Experience with Agile methodologies

Nice-to-haves

  • Familiarity with system and security design principles of medical device back-end software
  • In-depth understanding of cloud security principles and hands-on experience with cloud platforms such as AWS, Azure, or Google Cloud
  • Demonstrated mastery in IaC tools and technologies with a deep understanding of IaC principles and best practices
  • Strong understanding and experience with RESTful APIs
  • Advanced knowledge of one or more scripting languages, such as Python, Bash, or PowerShell
  • Experience with one or more programming languages, such as Type/JavaScript, JAVA, or PHP or Python
  • Proficiency in using SIEM for monitoring and analyzing security events
  • Extensive experience and expertise in leveraging tools for automating security processes within the development pipeline
  • Understanding of Quality Design Control processes and FDA submission processes
  • Experience with web applications and server hardening (i.e. AWS, Azure) including knowledge of OWASP Top 10 and blue teaming techniques

Benefits

  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Life insurance
  • Short- and long-term disability
  • Business accident insurance
  • Group legal insurance
  • 401(k) retirement plan
  • Vacation - up to 120 hours per calendar year
  • Sick time - up to 40 hours per calendar year
  • Holiday pay - up to 13 days per calendar year
  • Work, Personal and Family Time - up to 40 hours per calendar year

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service