Wednesday, July 9, 2014

Johnson & Johnson Security Analyst

Hello,
I hope you are having a great day; I wanted to follow up with you in regards to my partner, Michele, previous email about the Security Analyst role with Johnson & Johnson in Raritan, NJ. This is a W2 contract role only and in our search we came across your information and really liked a lot of the skill sets you had highlighted. We would love to get in touch and hear your thoughts on this role and if this is something you would be interested in.
Below is additional information and if you could please send over a word version of your resume as well the best time to get in touch that would be great!
Thanks and look forward to hearing from you!
This is a contract position scheduled to last 7 months with possible extension.
The Elevated Privilege Protection - Security Administrator, Worldwide Information Security (WWIS) /IT Security Technologies Management (ISTM), is responsible for participating in the creation and development of a global Client Access Protection (EPP) operational management framework for the J&J EPP solution.

RESPONSIBILITIES/PRINCIPAL DUTIES

Leading the development and implementation of J&Js EPP operational management framework, this includes global stratification of all operational aspects of J&Js EPP solution.
Developing/utilizing the J&J EPP solution for the quantitative and qualitative measurement of J&Js risk management for workstations and servers. More specifically as the solution is directly related to reporting the Information Security posture of J&J.
Participating in the creation of an enterprise operational EPP management program, working closely with Worldwide Information Security (WWIS), to monitor the security risk of J&Js workstation/server environment and to develop/execute risk acceptance plans; and governance recommendations for approval, including but not limited to establishing code execution, privilege rights, EPP policies, and EPP alerts for J&J.
Utilizing data from existing security tools as input to business decisions; providing input and recommendations to executive management on risk, emerging security trends (internal and external) and risk response strategies, specifically related to workstations and server;
Administration of the associated Operating System (OS) and Application, including but not limited to patching, monitoring, reviewing policies, responding to clients and reporting.
Acting as subject matter expert representing ISTM during internal audits and external regulatory inspections; be the subject matter expert for J&Js EPP solution.
Collaborating with the vendors responsible for the J&J EPP solution.
Although EPP is the primary project, there are additional responsibilities that involve security application and network experience, including but not limited to Client Application Protection, (CAP), Intrusion Detection and Prevention (network and host based), Security Event collection and correlation (SEIM/SELM), Firewall configuration management, and managing security policies as they relate to these technologies.
EDUCATION/EXPERIENCE

A. Education and/or additional training

A BA/BS is required with a Graduate degree being preferred. CISSP or equivalent preferred. B. Experience

4+ years of information security experience, preferably within a global, regulated, healthcare industry is required.
Strong knowledge of Bit9, Avecto and other EPP solutions, including similar technologies, and experience with auditing bodies is required.
Strong knowledge and clear documented experience regarding the administration and support of Windows Operating System(s), Windows 7, Windows XP, Vista, Windows Server 2003, Server 2008 and Server 2012. Windows Group Policies and Active Directory knowledge and proven experience are a must.
Must also demonstrate application experience with the ability to learn new technology.
Demonstrated experience in writing and managing Standard Operating Procedures (SOP), Work Instructions (WI) and Job References (Ref) documentation including the ability to coach others for the quality of content is required.
Candidate must also have some networking experience, and be able to articulate the relationship between the systems, the applications and the network, as applicable.
Demonstrated ability to contribute to complex projects, priorities and multiple tasks is required.
Possessing the credibility and presence to act as subject matter inspections is required.
Strong communication, influencing, presentation skills, collaboration and teaming skills are required.
Must have the ability to influence others with limited direct authority.
DECISION-MAKING AND PROBLEM-SOLVING

Candidate will make decisions on information security direction for J&J and present to management, recommend new policy requirements and recommend similar decisions on relevant information security programs.
Candidate will report on status of information security and recommend changes to improve overall information security posture.
DEGREE OF INDEPENDENT JUDGEMENT:

Candidate must be able to make independent and binding determinations of whether requirements are being met by ISTM, identify and evaluate appropriate external service providers, recommend the establishment or revision of ISTM processes or procedures based on new technology or other changes such as legal or regulatory.


Jackie Nakonecznyj View Jackie Nakonecznyj's LinkedIn profileView my profile
Recruiting Coordinator - Seattle
Harvey Nash - The Power of Talent
Office: 206-956-0350
Fax: 206-956-0474
Follow Harvey Nash USA on Follow us on Facebook Follow us on Twitter
The Harvey Nash 2013 CIO Survey U.S. and global IT insights and trends

No comments:

Post a Comment