FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Lead Product Security Engineer
Johnson & JohnsonProduct Security Analyst role at Johnson & Johnson focused on cybersecurity in medical device development. Collaborating cross-functionally to uphold product security standards and compliance.
Posted 6/5/2026full-timeDanvers • Massachusetts, New Jersey • 🇺🇸 United StatesSenior💰 $94,000 - $151,800 per yearWebsite
ATS Keywords
Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills
security plansarchitecture diagramsdata flow diagramsthreat modelsSBOMrisk documentationkey management infrastructurePKIHSMsTPMs
Soft Skills
organizational skillsattention to detailcommunication skillsinterpersonal skills
Certifications & Qualifications
SOC2FedRAMPISO 27001NIST Cybersecurity FrameworkHIPAAGDPR
Industry Keywords
Information Securitycompliance frameworksregulated environmentFDA-regulatedvulnerability managementproduct security program
Tech Stack
Tools & technologiesCloudCyber Security
About the role
Key responsibilities & impact- Partner with engineering and other cross-functional teams (cloud, console, pump, etc.) to drive successful adherence to J&J Heart Recovery's product security program.
- Deliver documentation for pre-market development activities including security plans, architecture and data flow diagrams, threat models, requirements, SBOM, and risk documentation.
- Define and implement key management infrastructure (PKI, HSMs, TPMs, and secure enclave integration) for device identity, authentication, and software signing.
- Monitor and drive post-market vulnerability management activities, with adherence to strict timelines.
- Support compliance certification activities, such as SOC2, FedRAMP, ISO 27001, etc.
- Identify, research, evaluate, and integrate new compliance requirements and industry standards/trends into the product security program.
- Guide teams to make decisions that balance business needs with security objectives.
Requirements
What you’ll need- Bachelor’s degree in Computer Science, Information Systems, or related field
- 4+ years industry experience in Information Security
- Working knowledge of regulatory standards and compliance frameworks (e.g., NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR)
- Experience with security risk management techniques and tactics
- Experience working in a regulated environment, FDA-regulated preferred
- Demonstrated organizational skills, attention to detail
- Strong communication and interpersonal skills
Benefits
Comp & perks- medical, dental, vision, life insurance
- short- and long-term disability
- business accident insurance
- group legal insurance
- consolidated retirement plan (pension)
- savings plan (401(k))
- Vacation –120 hours per calendar year
- Sick time - 40 hours per calendar year
- Holiday pay, including Floating Holidays –13 days per calendar year
- Work, Personal and Family Time - up to 40 hours per calendar year
- Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child
- Condolence Leave – 30 days for an immediate family member: 5 days for an extended family member
- Caregiver Leave – 10 days
- Volunteer Leave – 4 days
- Military Spouse Time-Off – 80 hours