Senior Cloud Security Engineer

$99,000 - $170,200/Yr

Janssen Global Services - Danvers, MA

posted about 1 month ago

Full-time - Senior
Remote - Danvers, MA

About the position

The Senior Cloud Security Engineer at Johnson & Johnson is responsible for ensuring that security is integrated into the product development lifecycle for medical devices. This role involves collaborating with engineering teams to adhere to product security policies, creating and improving security processes, and acting as a subject matter expert on cybersecurity. The position requires a strong focus on both pre-market and post-market security activities, including risk assessments and compliance certification support, ultimately aiming to enhance patient safety through robust security measures.

Responsibilities

  • Partner with engineering teams to drive adherence to product security policies and objectives.
  • Create, update, and improve product security processes.
  • Act as a subject matter expert on cybersecurity matters and provide guidance to development teams.
  • Advocate for the inclusion of cybersecurity input into all phases of the product lifecycle.
  • Deliver documentation for pre-market product development activities including security plans and risk management documentation.
  • Drive and monitor post-market vulnerability management activities.
  • Perform security risk assessments on Cloud infrastructure and applications.
  • Collaborate with development teams to integrate security measures into CI/CD pipelines and DevSecOps processes.
  • Support compliance certification activities such as SOC2, FedRAMP, and ISO 27001.
  • Identify and integrate new compliance requirements and best practices into product security programs.

Requirements

  • Bachelor's degree
  • 5+ years of industry experience in Information Security.
  • Experience working in a Cloud Scrum/Agile Azure DevOps environment.
  • Familiarity with tools such as Snyk, Veracode, Wiz, JIRA, and Confluence.
  • Experience with Containerization technologies such as Docker and Kubernetes.
  • Working knowledge of regulatory standards and compliance frameworks (e.g., NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR).
  • Experience with security risk management techniques.
  • Strong organizational skills and attention to detail.
  • Strong communication and interpersonal skills.

Nice-to-haves

  • Experience working in an FDA-regulated environment.

Benefits

  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Life insurance
  • Short- and long-term disability insurance
  • Business accident insurance
  • Group legal insurance
  • 401(k) retirement plan
  • Vacation time (up to 120 hours per year)
  • Sick time (up to 40 hours per year)
  • Holiday pay (up to 13 days per year)
  • Floating holidays
  • Work, Personal and Family Time (up to 40 hours per year)

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service