Senior Manager, Operating Technology Cybersecurity (New Consumer Health Company)

Job content

Johnson & Johnson is currently recruiting a Senior Manager, Operating Technology Cybersecurity (New Consumer Health Company). This position will be located in Zug, Switzerland.

Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 125 years. We embrace research and science -- bringing innovative ideas, products and services to advance the health and well-being of people. 

With $82.1 billion in 2020 sales, Johnson & Johnson is the world’s most comprehensive and broadly based manufacturer of health care products, as well as a provider of related services, for the consumer, pharmaceutical, and medical devices markets. Employees of the Johnson & Johnson Family of Companies work with partners in health care to touch the lives of over a billion people every day, throughout the world. 

If you have the talent and desire to touch the world, Johnson & Johnson has the career opportunities to help make it happen. Thriving on a diverse company culture, celebrating the uniqueness of our employees and committed to inclusion. Proud to be an equal opportunity employer. Johnson & Johnson is the world’s most comprehensive and broadly-based healthcare Company, touching the lives of nearly a billion people every day.  Our Family of Companies throughout the world compete in consumer, pharmaceutical and medical devices & diagnostics markets and have the skills and resources to tackle the world’s most pressing health issues. 

Johnson & Johnson announced plans to separate our Consumer Health business to create a new publicly traded company. The process of the planned separation is anticipated to be completed within 24 months, and it will be subject to legal requirements including consultation with works councils and other employee representative bodies, as required, and other customary conditions and approvals.   

It is anticipated that, following conclusion of the transaction, this position may be conveyed with New Consumer Health. In that case, details of any planned changes would be provided to the successful candidate by New Consumer Health at an appropriate time and would be subject to any necessary consultation processes.  

Position Description

MAKE Automation, Sciences & Technology (MAKE AS&T) is the Global MAKE functional pillar of the J&J Consumer Health Global Value Chain (GVC) Organization. It is the technical and operational excellence backbone of the Consumer Health Supply Chain providing Technical Ownership and Executional Excellence, maximizing the synergy of product, process and equipment.

The OT Cybersecurity leader is accountable for overseeing business segment operating technology cybersecurity activities, providing direction, support and guidance to business management in the identification, management and mitigation of supply chain specific cyber security risk. The role is responsible for developing and delivering on business focused, OT cyber security strategy and roadmaps to ensure business needs and risks are addressed within our industrial control systems and operating technology environments. He/she will facilitate and ensures deployment of new OTCS capabilities, maintain Supply Chain business continuity, participates in continuous improvement processes, and works with site SPOCs to embed cybersecurity culture across the consumer company.

Under the leadership of the operational technology cybersecurity (OTCS) Business Champion of the Consumer division he/she will be responsible for:

• DIRECTIONS and ROADMAP:
• Act as Global Single Point of Contact (SPOC) for OTCS
• Lead OTCS roadmap and strategy, capability development and deployment in close collaboration with the IT and ISRM team
• Define and align the funding requirements for build-and-run activities and ensure the appropriate level of funding and resources for risk remediation are in place for current and future year(s).
• Define and manage/maintain the site SPOCs network and facilitates succession strategies for them
• GOVERNANCE and RISKS
• Coordinate and lead regularly scheduled, structured meetings to share cyber security information, training, communications and metrics with sites and global leadership
• Lead regular communication/governance/risks meetings with the OTCS community
• Ensure risk management occur at site level
• Ensure OTCS standards are embedded at the site into the overall ISA95L2 Automation Standards
• Issue resolution, escalation to site and leadership
• Assess risk/return and resource allocations for OTCS in segment
• TRAINING:
• Oversee maintenance of OTCS Information – Global OTCS Use Cases, Procedures and Training materials, FAQs, Reference Materials, SC Portal
• Ensure CS technical, awareness and business process training are developed, maintained, provided regularly to the right roles/SPOCs
• Share OTCS Lessons Learned across the Supply Chain org.
• Coordinate and lead Site SPOC delivery of requirements; addresses gaps w/ remediation plans
• COMMUNICATION and CHANGE MANAGEMENT:
• Support OTCS culture evolution within Consumer Health
• Evaluate, develop, and implement programs to continue to embed OT Cyber Security in the SC culture
• METRICS
• Identify SPOCs for CS training/comms needs based on metrics
• Cascade/advise CSI metrics, review/advise Cyber Security Index (CSI) metrics with sites and ensure continuous improvement of the OT aspects of the CSI, recognize achievements, oversee gap resolution
• Escalate feedback. 
  
  

Qualifications

Position Requirements:

• Strong experience in manufacturing, engineering, and automation
• Strong knowledge of Cybersecurity, ability to apply skills across a broad range of cybersecurity domains. Working knowledge of system security design process, defense-in-depth/breadth, engineering lifecycle, information domains, cross-domain solutions, identification, authentication, and authorization, system integration, risk management, intrusion detection, contingency planning, incident handling, configuration control, change management, auditing, certification and accreditation process, principles of IA (confidentiality, integrity, availability), and security testing
• Possess excellent communication, motivation, team building, employee involvement, diplomacy, delegating skills, as well as confidence and enthusiasm
• Demonstrable track record of dealing well with ambiguity, prioritizing needs, and delivering results in a dynamic environment
• Experience in global consultancy and corporate environment managing and coordinating large multi-cultural teams in matrix organization across geographies
• Ability to collaborate within and across companies, cultures, functions, and geographies to drive change and action
• Expert knowledge of program management and project management and automation lifecycle management
• Experience in regulated GxP environment.
  
  

Preferred Requirements/Competencies

• Experience working in a consumer goods or pharmaceutical supply chain environment is preferred
• Information Security qualification is preferred
• Experience in managing Information Security and/or other technology teams is preferred
  
  

Primary Location

Switzerland-Zug-Zug-

Organization

JNTL Consumer Health I (Switzerland) GmbH (8523)

Job Function

Info Technology

Requisition ID

2206077334W