Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Johnson & Johnson

Lead Product Security Engineer

Johnson & Johnson

Product Security Analyst role at Johnson & Johnson focused on cybersecurity in medical device development. Collaborating cross-functionally to uphold product security standards and compliance.

Posted 6/5/2026full-timeDanvers • Massachusetts, New Jersey • 🇺🇸 United StatesSenior💰 $94,000 - $151,800 per yearWebsite

Tech Stack

Tools & technologies
CloudCyber Security

About the role

Key responsibilities & impact
  • Partner with engineering and other cross-functional teams (cloud, console, pump, etc.) to drive successful adherence to J&J Heart Recovery's product security program.
  • Deliver documentation for pre-market development activities including security plans, architecture and data flow diagrams, threat models, requirements, SBOM, and risk documentation.
  • Define and implement key management infrastructure (PKI, HSMs, TPMs, and secure enclave integration) for device identity, authentication, and software signing.
  • Monitor and drive post-market vulnerability management activities, with adherence to strict timelines.
  • Support compliance certification activities, such as SOC2, FedRAMP, ISO 27001, etc.
  • Identify, research, evaluate, and integrate new compliance requirements and industry standards/trends into the product security program.
  • Guide teams to make decisions that balance business needs with security objectives.

Requirements

What you’ll need
  • Bachelor’s degree in Computer Science, Information Systems, or related field
  • 4+ years industry experience in Information Security
  • Working knowledge of regulatory standards and compliance frameworks (e.g., NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR)
  • Experience with security risk management techniques and tactics
  • Experience working in a regulated environment, FDA-regulated preferred
  • Demonstrated organizational skills, attention to detail
  • Strong communication and interpersonal skills

Benefits

Comp & perks
  • medical, dental, vision, life insurance
  • short- and long-term disability
  • business accident insurance
  • group legal insurance
  • consolidated retirement plan (pension)
  • savings plan (401(k))
  • Vacation –120 hours per calendar year
  • Sick time - 40 hours per calendar year
  • Holiday pay, including Floating Holidays –13 days per calendar year
  • Work, Personal and Family Time - up to 40 hours per calendar year
  • Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child
  • Condolence Leave – 30 days for an immediate family member: 5 days for an extended family member
  • Caregiver Leave – 10 days
  • Volunteer Leave – 4 days
  • Military Spouse Time-Off – 80 hours

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
security plansarchitecture diagramsdata flow diagramsthreat modelsSBOMrisk documentationkey management infrastructurePKIHSMsTPMs
Soft Skills
organizational skillsattention to detailcommunication skillsinterpersonal skills
Certifications
SOC2FedRAMPISO 27001NIST Cybersecurity FrameworkHIPAAGDPR