Manager, Security Vendor Management Services - 2406216033W

Description

Johnson & Johnson is currently seeking a Manager, Security Vendor Management Services . The preferred location is Raritan, NJ or other NJ/PA site. Remote work options within the United States may be considered on a case-by-case basis and if approved by the Company.

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com/ .

For more than 130 years, diversity, equity & inclusion (DEI) has been a part of our cultural fabric at Johnson & Johnson and woven into how we do business every day. Rooted in Our Credo, the values of DEI fuel our pursuit to create a healthier, more equitable world. Our diverse workforce and culture of belonging accelerate innovation to solve the world’s most pressing healthcare challenges.

We know that the success of our business – and our ability to deliver meaningful solutions – depends on how well we understand and meet the diverse needs of the communities we serve. Which is why we foster a culture of inclusion and belonging where all perspectives, abilities and experiences are valued, and our people can reach their potential.

At Johnson & Johnson, we all belong.

Summary

The Johnson & Johnson Information Security & Risk Management (ISRM) team is seeking a passionate leader with an interest in working within the life science industry as Manager, Security Vendor Management Services.

We are offering a unique opportunity for a highly motivated and innovative Manager, Security Vendor Management Services to join our organization. In this role, you will have the chance to develop and implement a comprehensive security vendor management framework and strategy, aligned with ISRM’s Cyber Trust strategy and Enterprise Security Architecture. You will establish strong partnerships with key security vendors, comprehensively assess potential new security vendors and technologies, monitor and evaluate security vendor performance against established metrics and benchmarks, identify gaps and efficiency opportunities, and implement improvement strategies when necessary.

Responsibilities

• Establish discipline to optimize ISRM spend on and value derived from ISRM's security technology and professional services vendors.

• Ensure assessment, evaluation, selection, and adoption of security technologies follows a stringent multi-dimensional process to perform appropriate due diligence, ensure alignment with Cyber Trust strategy, Enterprise Security Architecture, data security / compliance requirements, and other prioritized drivers.

• Oversee agreements and other arrangements with security technology and professional services vendors to maximize vendor-provided benefits including innovation (co-)investment, training / coaching, design / implementation / integration services, and so forth.

• Perform proactive (quarterly) reviews to (re-)confirm strategic alignment, spend, and value of ISRM's technology and professional services vendors.

• Measure operational and financial performance of security vendors / technologies as relates to the ISRM products and services that rely on those vendors / technologies.

• Partner with Enterprise Security Architecture to build and maintain roadmaps, forecasts, and other forward-looking views of security technologies with respect to adoption, scale, feature-set expansion, growth into adjacent spaces, and future wind-down / phase-out planning for technologies with TIME “Migrate” or “Eliminate” dispositions.

• Partner with procurement, finance, and other functions as needed to ensure all appropriate processes are followed and requirements are met.

• Monitor industry trends, market dynamics, and emerging technologies to identify potential strategic partnerships and innovative vendor solutions.

Qualifications

Required:

• Bachelors required preferably in Cybersecurity, Security, Risk Management, Computer Science, Information Technology, Experience Design, Procurement, Supply Chain, Business, or a related field.

• At least 3-5 years of experience in vendor management or procurement roles, preferably in a technology or cybersecurity organization.

• At least 1-3 years of experience in cybersecurity, security, risk management, or related roles, with a general understanding of cybersecurity principles, frameworks, and industry best practices.

• Strong knowledge and practical experience in vendor management best practices, processes, and tools.

• Familiarity with MSA’s, subscription agreements, and other arrangements typically used to establish relationships with security technology and professional services vendors

• Track record of driving cost/benefit analyses, measuring value realization, and delivering cost optimization.

• Proven analytical skills and ability to analyze vendor performance data, identify trends, and make data-driven decisions.

• Familiarity in developing and managing vendor scorecards, KPIs, and performance metrics.

• Proactive, self-driven, and results-oriented mindset with the ability to work under pressure and meet deadlines.

• Strong communication and interpersonal skills to collaborate effectively with internal and external stakeholders.

• Ability to adapt to changing priorities, business needs, and market dynamics.

• Demonstrated ability to work cross-functional teams and drive consensus in decision-making processes.

• Ability to travel up to 10% of the time.

Preferred :

• Proficiency in creating dashboards and leveraging metrics and reporting tools.

• Master's degree

The anticipated base pay range for this position is $99,000- $170,200.

The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation’s performance over a calendar/performance year. Bonuses are awarded at the Company’s discretion on an individual basis.

• Employees and/or eligible dependents may be eligible to participate in the following Company sponsored employee benefit programs: medical, dental, vision, life insurance, short- and long-term disability, business accident insurance, and group legal insurance.

• Employees may be eligible to participate in the Company’s consolidated retirement plan (pension) and savings plan (401(k)).

• Employees are eligible for the following time off benefits:

o Vacation – up to 120 hours per calendar year

o Sick time - up to 40 hours per calendar year; for employees who reside in the State of Washington – up to 56 hours per calendar year

o Holiday pay, including Floating Holidays – up to 13 days per calendar year of Work, Personal and Family Time - up to 40 hours per calendar year

• Additional information can be found through the link below. https://www.careers.jnj.com/employee-benefits

Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

For more information on how we support the whole health of our employees throughout their wellness, career and life journey, please visit www.careers.jnj.com.

Primary Location NA-US-New Jersey-Raritan

Other Locations NA-US-Pennsylvania, NA-United States, NA-US-New Jersey

Organization Johnson & Johnson Services Inc. (6090)

Job Function Security & Controls

Req ID: 2406216033W