Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Johnson & Johnson

Lead Product Security Engineer

Johnson & Johnson

As a Product Security Analyst, ensure security by design in medical devices by collaborating with cross-functional teams. Impacting development initiatives within J&J Heart Recovery's product security program.

Posted 7/16/2026full-timeDanvers • Massachusetts, New Jersey • 🇺🇸 United StatesSenior💰 $94,000 - $151,800 per yearWebsite

Core Competencies

Role fit
Core Competencies

Use this summary to align your resume positioning with the role.

Demonstrates expertise in Information Security with a focus on compliance standards such as SOC2, ISO 27001, and NIST Cybersecurity Framework. Proficient in security risk management and key management infrastructure, ensuring adherence to regulatory requirements in a fast-paced environment.

Highest-signal resume keywords
Information SecurityCompliance StandardsSecurity Risk ManagementKey Management InfrastructureRegulatory Experience

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
Security PlansArchitecture DiagramsData Flow DiagramsThreat ModelsRisk DocumentationPKIHSMsTPMsSecure Enclave IntegrationVulnerability Management
Soft Skills
Strong CommunicationInterpersonal SkillsOrganizational SkillsAttention to DetailSense of Urgency
Industry Keywords
SOC2FedRAMPISO 27001NIST Cybersecurity FrameworkHIPAAGDPRFDA-Regulated Environment

Tech Stack

Tools & technologies
CloudCyber Security

About the role

Key responsibilities & impact
  • Partner with engineering and other cross-functional teams (cloud, console, pump, etc.) to drive successful adherence to J&J Heart Recovery's product security program.
  • Deliver documentation for pre-market development activities including security plans, architecture and data flow diagrams, threat models, requirements, SBOM, and risk documentation.
  • Define and implement key management infrastructure (PKI, HSMs, TPMs, and secure enclave integration) for device identity, authentication, and software signing.
  • Monitor and drive post-market vulnerability management activities, with adherence to strict timelines.
  • Support compliance certification activities, such as SOC2, FedRAMP, ISO 27001, etc.
  • Identify, research, evaluate, and integrate new compliance requirements and industry standards/trends into the product security program.
  • Guide teams to make decisions that balance business needs with security objectives.
  • Thinks across organizational boundaries and empathizes with customers, both internal and external.
  • Perform other related duties and responsibilities, as assigned.

Requirements

What you’ll need
  • Bachelor’s degree in Computer Science, Information Systems, or related field
  • 4+ years industry experience in Information Security
  • Working knowledge of regulatory standards and compliance frameworks (e.g., NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR)
  • Experience with security risk management techniques and tactics
  • Experience working in a regulated environment, FDA-regulated preferred
  • Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be able to meet assigned deadlines
  • Committed to working with a sense of urgency and embracing new challenges
  • Strong communication and interpersonal skills

Benefits

Comp & perks
  • medical, dental, vision, life insurance
  • short- and long-term disability
  • business accident insurance
  • group legal insurance
  • retirement plan (pension)
  • savings plan (401(k))
  • Vacation –120 hours per calendar year
  • Sick time - 40 hours per calendar year
  • Holiday pay, including Floating Holidays –13 days per calendar year
  • Work, Personal and Family Time - up to 40 hours per calendar year
  • Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child
  • Condolence Leave – 30 days for an immediate family member: 5 days for an extended family member
  • Caregiver Leave – 10 days
  • Volunteer Leave – 4 days
  • Military Spouse Time-Off – 80 hours