Sr. Cybersecurity Analyst - Shockwave

• Job title Sr. Cybersecurity Analyst - Shockwave
• Function Technology Enterprise Strategy & Security
• Sub function Security & Controls
• Category Experienced Analyst, Security & Controls (ST5)
• Location Santa Clara / United States of America
• Date posted Mar 06 2025
• Requisition number 2406226014W
• Work pattern Hybrid Work

Summary

Functions as an entry to developing individual contributor in a technology field. Administers methods based on proven research, root cause analyses, and vulnerability assessments for the Security & Controls team. Applies practical skills of the field to complete tasks that support the organization's technology objectives. Contributes to technical integration projects and security control processes under direct supervision.

Description

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com

Job Function:

Job Sub Function:

Job Category:

All Job Posting Locations:

Job Description:

Johnson & Johnson is hiring for a Sr. Cybersecurity Analyst - Shockwave Medical to join our team located in Santa Clara, CA.

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com/.

Fueled by innovation at the intersection of biology and technology, we’re developing the next generation of smarter, less invasive, more personalized treatments. Ready to join a team that’s pioneering the development and commercialization of Intravascular Lithotripsy (IVL) to treat complex calcified cardiovascular disease. Our Shockwave Medical portfolio aims to establish a new standard of care for medical device treatment of atherosclerotic cardiovascular disease through its differentiated and proprietary local delivery of sonic pressure waves for the treatment of calcified plaque.

• Monitoring, triaging, and promptly responding to activities across the security operations tools and resources while coordinating with SOC to remediate and mitigate risks and incidents.
• Research, architect, test, implement, and maintain network security controls and countermeasures to maintain the confidentiality, integrity, and availability of Shockwave Medical’s data.
• Provides recommendations to operational IT teams and communicates with business units on processes, controls, and objectives around information security activities, best practices, and process improvements.
• Performs periodic and on-demand system and vulnerability assessments related to third party risk management and penetration testing.
• Identifies and advises management of critical issues that may affect Shockwave’s overall security profile.
• Continuously implement, improve, and document workflows and processes in Cybersecurity Incident Response tactics, tools, and procedures.
• Maintains working understanding of technical control testing aligned with NIST CSF and ISO.
• Maintains working understanding of common OS and domain structures, servers, services, and associated vulnerabilities.
• Maintains working understanding of network engineering and local and wide area (LAN/WAN) technologies and topologies.
• Maintains working understanding of cloud deployments and associated risk considerations.
• Keeps informed regarding new and emerging information technology trends including IAM solutions, endpoint protection technologies, web application firewalls and intrusion prevention, encryption, access control methodologies, IDS/IPS systems, SIEM tools and network scanners.
• Mentors junior analysts and provides guidance in security-related matters.

• BS or BA preferred. Security certifications or the willingness to obtain certifications desirable.
• 5+ years in Cybersecurity roles, at least 1 year in senior or lead role.
• Knowledge of IAM platforms, security tools (SIEMs, ASAs, Firewalls), Email Security, DLP, and other security technologies.
• Familiarity with physical security control systems (badging, door lock controls, camera systems) desirable.
• Familiarity with SOC1, SOC2, and/or ISO 27001 auditing and associated requirements.
• Strong written and verbal communication skills to communicate effectively at all levels.
• Ability to work in a fast-paced environment while managing multiple priorities.
• Ability to operate as a team and/or independently while demonstrating flexibility to changing requirements.

Additional Information:

• The anticipated base pay for this position is $89,000-$142,600 annually.
• The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation’s performance over a calendar/performance year. Bonuses are awarded at the Company’s discretion on an individual basis.
• Employees and/or eligible dependents may be eligible to participate in the following Company sponsored employee benefit programs: medical, dental, vision, life insurance, short- and long-term disability, business accident insurance, and group legal insurance.
• Employees may be eligible to participate in the Company’s consolidated retirement plan (pension) and savings plan (401(k)).
• Employees are eligible for the following time off benefits:
  • Vacation – up to 120 hours per calendar year
  • Sick time - up to 40 hours per calendar year; for employees who reside in the State of Washington – up to 56 hours per calendar year
  • Holiday pay, including Floating Holidays – up to 13 days per calendar year
  • Work, Personal and Family Time - up to 40 hours per calendar year
• Additional information can be found through the link below. https://www.careers.jnj.com/employee-benefits

Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act.

Johnson and Johnson is committed to providing an interview process that is inclusive of our applicants’ needs. If you are an individual with a disability and would like to request an accommodation, please email the Employee Health Support Center (ra-employeehealthsup@its.jnj.com) or contact AskGS to be directed to your accommodation resource.

The anticipated base pay range for this position is :

Additional Description for Pay Transparency: