Senior Analyst Operational Technology Cyber Security
Share
Job Location:
Monthly Salary:
Posted on:
8 hours ago
Vacancies:
1 Vacancy
Job Summary
At Johnson & Johnsonwe believe health is everything. Our strength in healthcare innovation empowers us to build aworld where complex diseases are prevented treated and curedwhere treatments are smarter and less invasive andsolutions are our expertise in Innovative Medicine and MedTech we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow and profoundly impact health for more at
Job Function:
Technology Enterprise Strategy & SecurityJob Sub Function:
Security & ControlsJob Category:
Scientific/TechnologyAll Job Posting Locations:
São José dos Campos São Paulo BrazilJob Description:
Johnson & Johnson is currently recruiting for a Senior Analyst Operational Technology Cyber Security within the Information Security and Risk Management (ISRM) organization.
This position is based out Warsaw Poland or São José dos Campos Brazil.
As a member of the Operational Technology Cybersecurity Engineering team you will focus on developing and maintaining automation solutions that enhance the functionality and efficiency of Tanium OT services. You will contribute to custom script development platform optimization and integration efforts to support cybersecurity operations across IT and OT environments. This role offers opportunities to lead technical initiatives and collaborate with cross-functional teams to improve visibility compliance and platform performance.
This position will also partner with internal ISRM teams such as the Supply Chain security Cyber Security Operations Center (CSOC) and other groups under the J&J Technology umbrella including but not limited to End User Server and Network support.
Key Responsibilities:
- Build and deploy custom scripts aligned with security stakeholder requests and Tanium Platform standards.
- Maintain a repository of reusable code for remediation and data retrieval across IT & OT environments.
- Refactor and validate existing code for performance security and maintainability.
- Conduct structured testing of code samples during upgrade cycles and recommend improvements.
- Define and implement strategies for platform performance security hardening and automation.
- Validate data flows and integration points to maintain accuracy and compliance.
- Collaborate with security and infrastructure teams to ensure platform reliability and adherence to operational standards.
- Develop Tanium sensors and packages to enhance endpoint data visibility and monitor workflows.
- Support Cybersecurity workflows to assess risk increase visibility and reduce impact of vulnerabilities across IT & OT environments.
- Test and validate security controls throughout the different phases of the Cyber Kill Chain and the MITRE ATT&CK framework to prevent detect and respond.
- Generate threat behavior analytics for discovering historical and emerging threats to networks and systems.
- Implement detection strategies based on internal and external intelligence reporting and vulnerability research.
- Perform administrative tasks associated with tuning alerts correlation rules signatures device configurations patching and upgrades.
- Establish and maintain relationships with the suppliers vendors and partners.
- Assists with security events/incidents coordinating activities with the CSOC and others as needed.
Qualifications
Education:
- A bachelors degree or equivalent experience in the information security or information technology sector
Experience and Skills
Required:
- Strong programming skills in scripting languages (e.g. Python PowerShell Bash) for automation and integration.
- Strong foundation in information security principles with proven ability in debugging and root cause analysis in IT & OT environments.
- Experience in engineering installing configuring and operating security solutions and appliances across large-scale hybrid environments (AWS Azure GCP on-prem).
- Ability to engineer customize and extend endpoint management and visibility platforms including developing integrations automation and product-level enhancements.
- Familiarity with agile frameworks and DevSecOps practices with the ability to deliver iteratively while maintaining reliability in high-risk environments.
- Proven track record leading complex implementations demonstrating risk-aware problem solving and balancing security with operational continuity.
- Strong communication skills (written and verbal) able to translate technical details into clear guidance for both technical and non-technical stakeholders.
- Knowledge of security frameworks and standards (NIST CSF CIS Controls OWASP SANS) and ability to apply them pragmatically in OT contexts.
- Working knowledge of the MITRE ATT&CK framework including OT-specific TTPs and ability to map telemetry to adversary behaviors.
- Experience collaborating with distributed global teams working effectively across diverse cultural and technical backgrounds.
Please note that this role is available across multiple countries and may be posted under different requisition numbers to comply with local requirements. While you are welcome to apply to any or all of the postings we recommend focusing on the specific country(s) that align with your preferred location(s):
Brazil (Sao Jose dos Campos) - Requisition Number: R-045644
Poland (Warsaw) - Requisition Number: R-046653
Required Skills:
Operational Technology (OT) SecurityPreferred Skills:
Communication Corrective and Preventive Action (CAPA) Critical Thinking Information Security Auditing Information Security Management System (ISMS) Information Technology (IT) Security Assessments Information Technology Strategies Mentorship Network Optimization Presentation Design Process Optimization Report Writing Security Policies Technical Credibility Technologically Savvy Training People Vulnerability AssessmentsRequired Experience:
Senior IC
Key Skills
- Business Process
- Active Directory
- Customer Service
- Information Technology
- HIPAA
- Information Security
- Infrastructure
- Linux
- Project Management
- Nist
- Risk Assessments
- Procedures
- hardware
- Data Analysis
- Technical Support
About Company
About Johnson & Johnson A t Johnson & Johnson, we believe good health is the foundation of vibrant lives, thriving communities and forward progress. That’s why for more than 130 years, we have aimed to keep people well at every age and every stage of life. Today, as the world’s larges ... View more
