Principal Security Architecture - Security Products (Senior Manager)

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com

Job Function:

Technology Product & Platform Management

Job Sub Function:

Business Systems Analysis

Job Category:

People Leader

All Job Posting Locations:

São José dos Campos, São Paulo, Brazil

Job Description:

Johnson & Johnson is currently seeking a Principal Security Architect to join our Information Security Risk Management (ISRM) team located in San Jose Dos Campos, Brazil.

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to further a world where sophisticated diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow and profoundly impact health for humanity.

In this dynamic position, you will craft, refine, and elevate enterprise security architectures, driving the innovative design and seamless integration of ground breaking security capabilities across a diverse portfolio of security products and platforms in-use globally by Johnson & Johnson! We seek hardworking, hands-on architects who can bridge product strategy with enterprise security—ensuring that both internally developed and third-party solutions exceed the highest standards of resiliency, privacy, and risk mitigation!

Key Responsibilities:

• Author, maintain, and update reference architecture documentation for assigned security products.
• Collaborate with internal security product operators and engineers to implement robust security technology solutions.
• Develop architecture plans addressing technical and functional requirements.
• Combine technical expertise, critical thinking, and leadership to ensure effective protection across key product areas.
• Drive the design, implementation, and optimization of security solutions as an embedded squad member.
• Ensure alignment of security technology products with global security strategy needs.

Qualifications

Education:

• Bachelor’s degree experience in computer science, Information Security, or a related field.
• Certifications such as SABSA, CISSP, AWS/Azure Architect, TOGAF, or CCSP

Experience and Skills:

Required:

• 10+ years of cybersecurity experience, including 5+ years in a security architecture or security engineering leadership role.
• In-depth Knowledge security frameworks and standards, such as ISO 27001, NIST Cybersecurity Framework, CIS Controls, and SOC2.
• Proficiency in aligning security architecture with security strategy, risk management policies, and regulatory requirements (e.g., HIPAA, GDPR, FDA, SOX).
• Deep experience information security platforms (e.g., SIEM, EDR/XDR, CASB, CNAPP, IAM), and experience integrating them and driving adoption within sophisticated environments.
• Proven track record of design and evaluation of technical controls to meet compliance obligations and mitigate enterprise risk.
• Solid grasp of Lean IX, including experience maintaining Fact Sheets.
• Demonstrated ability to adapt to changing security landscapes, evolving technologies, and new regulatory requirements.
• Effectively works with virtual, global teams – including diverse groups of people with varied backgrounds and cultural experiences.

Preferred:

• Masters or Doctorate degree preferred.
• Experience authoring or approving reference architecture documents for endpoint detection tools, network security products, or security telemetry solutions.
• Experience with Information Security programs in GxP environments.
• Experience with cybersecurity programs in Operational Technology (OT) environments.

Other:

• Excellent written, verbal and influential communication skills with the ability to work effectively with senior leaders, engineers, and business teams
• Travel expectation will be 10% or less to locations within the United States.

Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

For more information on how we support the whole health of our employees throughout their wellness, career and life journey, please visit www.careers.jnj.com.]

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.