Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Johnson & Johnson

Lead Product Security Engineer

Johnson & Johnson

Product Security Analyst role at Johnson & Johnson focused on cybersecurity in medical device development. Collaborating cross-functionally to uphold product security standards and compliance.

Posted 6/5/2026full-timeDanvers • Massachusetts, New Jersey • 🇺🇸 United StatesSenior💰 $94,000 - $151,800 per yearWebsite

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
security plansarchitecture diagramsdata flow diagramsthreat modelsSBOMrisk documentationkey management infrastructurePKIHSMsTPMs
Soft Skills
organizational skillsattention to detailcommunication skillsinterpersonal skills
Certifications & Qualifications
SOC2FedRAMPISO 27001NIST Cybersecurity FrameworkHIPAAGDPR
Industry Keywords
Information Securitycompliance frameworksregulated environmentFDA-regulatedvulnerability managementproduct security program

Tech Stack

Tools & technologies
CloudCyber Security

About the role

Key responsibilities & impact
  • Partner with engineering and other cross-functional teams (cloud, console, pump, etc.) to drive successful adherence to J&J Heart Recovery's product security program.
  • Deliver documentation for pre-market development activities including security plans, architecture and data flow diagrams, threat models, requirements, SBOM, and risk documentation.
  • Define and implement key management infrastructure (PKI, HSMs, TPMs, and secure enclave integration) for device identity, authentication, and software signing.
  • Monitor and drive post-market vulnerability management activities, with adherence to strict timelines.
  • Support compliance certification activities, such as SOC2, FedRAMP, ISO 27001, etc.
  • Identify, research, evaluate, and integrate new compliance requirements and industry standards/trends into the product security program.
  • Guide teams to make decisions that balance business needs with security objectives.

Requirements

What you’ll need
  • Bachelor’s degree in Computer Science, Information Systems, or related field
  • 4+ years industry experience in Information Security
  • Working knowledge of regulatory standards and compliance frameworks (e.g., NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR)
  • Experience with security risk management techniques and tactics
  • Experience working in a regulated environment, FDA-regulated preferred
  • Demonstrated organizational skills, attention to detail
  • Strong communication and interpersonal skills

Benefits

Comp & perks
  • medical, dental, vision, life insurance
  • short- and long-term disability
  • business accident insurance
  • group legal insurance
  • consolidated retirement plan (pension)
  • savings plan (401(k))
  • Vacation –120 hours per calendar year
  • Sick time - 40 hours per calendar year
  • Holiday pay, including Floating Holidays –13 days per calendar year
  • Work, Personal and Family Time - up to 40 hours per calendar year
  • Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child
  • Condolence Leave – 30 days for an immediate family member: 5 days for an extended family member
  • Caregiver Leave – 10 days
  • Volunteer Leave – 4 days
  • Military Spouse Time-Off – 80 hours