Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Sr. Director, GRC, IT Controls & Cyber Culture, Orthopedics

$178k - $307.05k
Full-time

Johnson & Johnson Innovative Medicine

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at jnj.com As guided by Our Credo, Johnson & Johnson is responsible to our employees who work with us throughout the world. We provide an inclusive work environment where each person is considered as an individual. At Johnson & Johnson, we respect the diversity and dignity of our employees and recognize their merit. Job Function: Technology Enterprise Strategy & Security Job Sub Function: Security & Controls Job Category: People Leader All Job Posting Locations: Palm Beach Gardens, Florida, United States of America, Raritan, New Jersey, United States of America, Raynham, Massachusetts, United States of America, Warsaw, Indiana, United States of America, West Chester, Pennsylvania, United States of America Job Description: DePuy Synthes is recruiting for a(n) Sr. Director, GRC, IT Controls and Cyber Culture. Johnson & Johnson announced plans to separate our Orthopedics business to establish a standalone orthopedics company, operating as DePuy Synthes. The process of the planned separation is anticipated to be completed within 18 to 24 months, subject to legal requirements, including consultation with works councils and other employee representative bodies, as may be required, regulatory approvals and other customary conditions and approvals. Should you accept this position, it is anticipated that, following conclusion of the transaction, you would be an employee of DePuy Synthes and your employment would be governed by DePuy Synthes employment processes, programs, policies, and benefit plans. In that case, details of any planned changes would be provided to you by DePuy Synthes at an appropriate time and subject to any necessary consultation processes. Job Overview This role serves as a senior cybersecurity leader reporting to the CISO, with enterprise accountability for building, maturing, and operationalizing the Governance, Risk & Compliance (GRC) function across DePuy Synthes. The Sr. Director will oversee the BISO manager organization, establish scalable risk governance practices, strengthen security awareness and behavior based culture programs, and drive implementation of IT controls and an enterprise assurance framework. The role will also oversee external cybersecurity assessments and disclosures, including cyber insurance, ESG-related cybersecurity inputs, and other third-party assurance activities. This highly visible leadership role will help ensure cybersecurity risk, compliance, control effectiveness, and cultural adoption are consistently managed across the enterprise in support of business priorities, regulatory expectations, and organizational resilience. Key Responsibilities Build and mature the enterprise GRC function, including governance forums, risk management processes, compliance oversight, control monitoring, issue management, and executive reporting. Provide leadership and oversight for the BISO manager organization, ensuring consistent engagement with business leaders, effective cyber risk advisory support, and alignment of security priorities to business objectives. Lead enterprise cyber risk management activities, including risk identification, assessment, mitigation planning, escalation, and reporting to senior leadership and governance bodies. Own the enterprise cybersecurity policy and standards lifecycle - from creation and implementation to continuous review - ensuring clarity, compliance, and alignment with organizational goals. Oversee SOX cybersecurity and IT control activities, including implementation, operating effectiveness, evidence readiness, remediation tracking, and partnership with Finance, Internal Audit, External Audit, and IT control owners. Establish and operationalize an enterprise IT controls and assurance framework that enables consistent control design, testing, monitoring, reporting, and continuous improvement across the organization. Lead oversight of external cybersecurity assessments and assurance requests, including cyber insurance questionnaires, ESG-related cybersecurity inputs, customer or partner assessments, and other third-party reviews requiring enterprise cyber risk and control representation. Drive cybersecurity compliance with applicable global regulations, standards, and frameworks, ensuring the organization can demonstrate control effectiveness and audit readiness. Lead security awareness, behavior, and culture initiatives that improve workforce accountability, reduce human‑centric risk, and embed secure practices into day‑to‑day business operations. Lead and develop high‑performing cybersecurity leaders and teams, fostering a culture of accountability, collaboration, disciplined execution, and continuous improvement. Provide executive‑level reporting on cybersecurity risk, compliance status, control effectiveness, assurance outcomes, and program maturity to senior leadership and governance bodies. Qualifications Education Required: Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field. Preferred: Master’s degree (MS, MBA, or equivalent) in Cybersecurity, Information Systems, or Business. Experience and Skills Required: 12–14 years of progressive experience in cybersecurity, information security, technology risk management, IT controls, or GRC, including senior leadership roles. Demonstrated experience building or maturing enterprise GRC programs in a regulated, global, or complex operating environment. Experience leading BISO, cyber risk advisory, security governance, or business aligned cybersecurity teams. Deep knowledge of cybersecurity risk management, compliance frameworks, IT controls, SOX control expectations, assurance practices, and audit readiness. Experience overseeing external cybersecurity assessments, including cyber insurance, ESG-related cybersecurity reporting, customer or partner assessments, and third-party assurance requests. Experience building, mentoring, and leading senior level cybersecurity teams. Strong strategic, analytical, and communication skills, with the ability to translate technical risk, control gaps, and compliance obligations into business impact. Preferred: Experience implementing or transforming enterprise IT controls, SOX programs, control testing, remediation governance, and assurance frameworks. Experience driving cybersecurity awareness, behavior change, and culture programs across a large enterprise. Experience operating in complex, global organizations undergoing transformation or separation. Demonstrated success improving cybersecurity maturity, control effectiveness, and risk accountability at scale. Proven ability to influence executive stakeholders and partner effectively across IT, Finance, Internal Audit, External Audit, Legal, Risk, Compliance, and business leadership functions. Other: Language: English (fluent) Travel: Up to 20%, domestic and international Certifications (preferred): CISSP, CISM, CRISC, or equivalent For more information on how we support the whole health of our employees throughout their wellness, career and life journey, please visit Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act. Johnson and Johnson is committed to providing an interview process that is inclusive of our applicants’ needs. If you are an individual with a disability and would like to request an accommodation, please email the Employee Health Support Center (View email address on click.appcast.io) or contact AskGS to be directed to your accommodation resource. #DePuySynthesCareers Required Skills: Preferred Skills: Business Process Design, Crisis Management, Critical Thinking, Cybersecurity, Developing Others, Inclusive Leadership, Industry Analysis, Information Security Auditing, Information Security Management System (ISMS), Information Technology (IT) Security Assessments, Information Technology Strategies, Leadership, Presentation Design, Process Optimization, Risk Management Framework, Security Architecture Design, Security Policies, Strategic Thinking The anticipated base pay range for this position is : $178,000.00 - $307,050.00 Additional Description for Pay Transparency: Subject to the terms of their respective plans, employees are eligible to participate in the Company’s consolidated retirement plan (pension) and savings plan (401(k)). This position is eligible to participate in the Company’s long-term incentive program. Subject to the terms of their respective policies and date of hire, employees are eligible for the following time off benefits: Vacation –120 hours per calendar year Sick time - 40 hours per calendar year; for employees who reside in the State of Colorado –48 hours per calendar year; for employees who reside in the State of Washington –56 hours per calendar year Holiday pay, including Floating Holidays –13 days per calendar year Work, Personal and Family Time - up to 40 hours per calendar year Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child Bereavement Leave – 240 hours for an immediate family member: 40 hours for an extended family member per calendar year Caregiver Leave – 80 hours in a 52-week rolling period10 days Volunteer Leave – 32 hours per calendar year Military Spouse Time-Off – 80 hours per calendar year For additional general information on Company benefits, please go to: - At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at Do Not Sell or Share My Personal Information Limit the Use of My Personal Information

Vacancy posted 22 hours ago
Similar jobs that could be interesting for youBased on the Sr. Director, GRC, IT Controls & Cyber Culture, Orthopedics in West Chester, PA vacancy
  • Description Job Overview The Security GRC Analyst role is to ensure the...  ...Assess technology risk across IT and the organization,...  ...initiatives to completion. Perform control gap assessments, communicate and...  ...requirement. Working knowledge of cyber security frameworks. Working... 
    Cyber

    Citadel Federal Credit Union

    Exton, PA
    3 days ago
  •  ...to protect Vanguard and its clients from cyber security threats Core Responsibilities...  ...on mitigation strategies or compensating controls, and to provide accurate & timely reporting...  ...mission-driven and highly collaborative culture is a critical enabler to support long-... 
    Cyber
    Senior
    Work experience placement

    Vanguard

    Malvern, PA
    16 days ago
  •  ...integrated plan, RAID log, dependency and change control). Drive Day‑1 readiness and Day‑100...  ...Success, Operations, Finance, HR, IT, Legal/Compliance, Procurement), with clear...  ...leadership alignment, operating rhythm, culture considerations) to enable adoption and retention... 
    Suggested

    Jobtailor

    Exton, PA
    3 days ago
  • $83.5k - $145.5k

    Claims Specialist - Cyber United States Our Claims team sets us apart. Our experienced Claims...  ...? You focus on excellence and creating a culture of continuous improvement. You create an...  ..., lifestyle and financial security. It provides competitive compensation and personalized... 
    Cyber
    Senior
    Flexible hours

    AXA Group

    Exton, PA
    1 day ago
  •  ...Vanguard's Internal Audit & SOX department is seeking an IT SOX Audit Senior Controls Manager to join the SOX Audit Services (SAS) team. SAS serves...  .... We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes... 
    Senior
    Work experience placement
    Work at office

    Vanguard

    Malvern, PA
    11 hours ago
  •  ...opportunity. Job Summary Reporting to the Director, Corporate Accounting, the Manager,...  ...of derivatives, improving the respective control processes in each cycle; Review revenue...  ...collaboration. Inclusive & Collaborative Culture: A global workforce that values... 
    Work experience placement
    Local area
    Relocation
    3 days per week

    JobRx, Inc.

    Exton, PA
    3 days ago
  • $96k - $178k

     ...promote work-life success. Fundamental to our culture is an unwavering focus on values,...  ...connecting the space, air, land, sea and cyber domains in the interest of national security...  ...Participate in cross-functional teams for process control, improvement, and optimization projects;... 
    Cyber
    Senior
    Work experience placement
    Internship
    Local area
    Flexible hours

    L3Harris Technologies

    Berwyn, PA
    12 hours ago
  • $105k - $151k

     ...empower employees and promote work-life success. Fundamental to our culture is an unwavering focus on values, dedication to our communities,...  ...technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security. Job Title:... 
    Cyber
    Senior
    Local area
    Relocation

    L3Harris Technologies

    Newtown Square, PA
    5 days ago
  • AXA Group is seeking a Claims Specialist - Cyber to join their innovative team in Exton, Pennsylvania. This role involves managing complex...  ..., particularly in technology and cyber sectors. AXA promotes a culture of continuous improvement and innovation. #J-18808-Ljbffr AXA... 
    Cyber
    Senior

    AXA Group

    Exton, PA
    5 days ago
  •  ...professionals for this role. Vanguard is seeking a Controls Management Specialist to join the Global Governance, Risk & Compliance (GRC) team within Enterprise Security & Fraud (ES...  ...our mission-driven and highly collaborative culture is a critical enabler to support long-term... 

    Vanguard

    Malvern, PA
    23 hours ago
  • $116.6k - $175k

     .... This role will help drive a customer‑centric, growth‑oriented culture by delivering integrated learning and capability solutions that...  ...picture of your health, wellbeing, lifestyle and financial security. It provides competitive compensation and personalized, inclusive... 
    Flexible hours

    AXA XL

    Exton, PA
    2 days ago
  • $161k - $242k

     ...development and implementation of security controls, standard operating procedures (SOPs), and...  ...systems and data against evolving cyber threats. Advance the organization's compliance...  ...experience. ~5+ years of experience in IT, Cybersecurity Operations, or Security Engineering... 
    Cyber
    Senior
    Remote work

    Synopsys Inc

    Exton, PA
    12 days ago
  • $157k - $209k

     ...tiered operating cadence to sustain performance Promote a culture of continuous improvement and data-driven decision-making Performance...  ...Grade SPB1 This role requires access to U.S. export-controlled information. Therefore, employment will be contingent upon the... 
    Senior
    Permanent employment
    Full time
    Contract work
    Relocation package

    GE Renewable Energy Power and Aviation

    West Chester, PA
    7 days ago
  •  ...this role. Overview: As the Head of Cyber Defense within Vanguard’s Cyber Security...  ...integration and scalability Risk, Controls & Regulatory Leadership Maintain a strong...  ...pipelines across all layers Foster a culture of ownership, innovation, and continuous... 
    Cyber

    Vanguard

    Malvern, PA
    4 days ago
  •  ...toxicology, bioanalytical services, chemistry and manufacturing controls for drug development, and core laboratory services for clinical...  ...skills with ability to influence and support others through a culture of inclusion, feedback, and empowerment. A good knowledge of Hamilton... 
    Senior
    Full time
    Contract work

    Frontage-Laboratories

    Exton, PA
    1 day ago
  •  ...testing and in agroscience CRO services. It is also one of the global independent market...  ...for all questions related to quality control activities related to microbiology in the...  ...and drug product Perform gram stains, sub-culturing of isolates, growth promotion testing, and... 
    Full time
    Monday to Friday
    Shift work
    Day shift

    Eurofins PSS Insourcing Solutions

    Exton, PA
    3 days ago
  • $196k - $342.7k

     ...is recruiting for a(n) Sr. Director, Data Science & AI....  ...corporate identity, voice, culture, and reputation while...  ...plans to separate our Orthopedics business to establish...  ...priorities and IT objectives, spanning machine...  ...and Human in the loop controls. Evaluate and manage the... 
    Senior
    Full time
    Work experience placement
    Local area
    Immediate start

    Johnson & Johnson Innovative Medicine

    West Chester, PA
    1 day ago
  • $120.2k - $189.4k

     ...protected characteristic. At AXA XL, we know that an inclusive culture and enables business growth and is critical to our success. That...  ...picture of your health, wellbeing, lifestyle and financial security. It provides competitive compensation and personalized, inclusive... 
    Senior
    Flexible hours

    AXA Group

    Exton, PA
    3 days ago
  • $85.6k - $117.7k

     .... Demonstrated ability to deal directly with client leads to build consensus, establish trust, communicate effectively and foster culture change. Ability to use research methods effectively including data collection and analysis. In lieu of degree, 6-9 years of relevant... 
    Senior
    Work at office
    Local area

    Exelon

    Kennett Square, PA
    4 days ago
  •  ...Required: ~ Global Resiliency team providing support to multiple Cyber Security Applications servers. ~ Tools/Technologies: Splunk,...  ...Server Management, Windows Servers Management, Thousand Eyes, Control-M. ~ Quickly responds to incident alerts, analyze impact,... 
    Cyber
    Contract work
    Weekend work

    Syntricate Technologies

    Malvern, PA
    1 day ago
  • $120k - $202.5k

     ...We Are Looking For State Street's Cyber Data & Analytics (CyberDNA) team is seeking a Sr. Platform Operations Engineer to help...  ..., and Log Telemetry Monitoring control requirements, while measuring success...  ...Job Application Disclosure: It is unlawful in Massachusetts to require... 
    Cyber
    Senior
    Full time
    Temporary work
    Flexible hours

    State Street

    Berwyn, PA
    1 day ago
  • $134k - $168k

     ...Place to Work for All. We achieve this through our world-class culture, generous benefits and by delivering cutting-edge technology solutions...  ...World Wide Technology is hiring an Associate Client Solutions Director (ACSD) to lead delivery of strategic digital and AI programs,... 
    Full time
    Contract work
    Shift work

    World Wide Technology

    West Chester, PA
    2 days ago
  •  ...current on laws/regulations and external trends, developments or activities that could impact talent, organizational effectiveness, culture and leadership development. Conform with and abide by all regulations, policies, work procedures, instruction, and all safety... 
    Senior
    Work experience placement
    Work at office
    Local area
    3 days per week

    West Pharmaceutical Services, Inc

    Exton, PA
    2 days ago
  •  ...Internal Audit & SOX department is seeking an IT Senior Auditor to join the SOX Audit...  ...as Vanguard's centralized ICFR (internal control over financial reporting) assurance and...  ...mission-driven and highly collaborative culture is a critical enabler to support long-term... 
    Senior
    Work at office

    Vanguard

    Malvern, PA
    11 hours ago
  •  ...under the guidance and direction of the Sr. Director of IT. The successful candidate will have the...  ...hazard free. Follow all infection control procedures as they apply. Know and follow...  ...IT areas, such as desktop support, cyber security, and methods used in those areas... 
    Cyber
    Work at office
    Local area
    Immediate start
    Remote work

    White Horse Village

    Newtown Square, PA
    1 day ago
  • $73.9k - $122.7k

     ...available information for model input quality control. Collaborate with other actuaries when...  .... At AXA XL, we know that an inclusive culture and enables business growth and is critical...  ..., lifestyle and financial security. It provides competitive compensation and personalized... 
    Senior
    Flexible hours

    AXA Group

    Exton, PA
    3 days ago
  •  ...Security Governance, Risk and Compliance (GRC) Analyst - Risk and Policy focus. Responsibilities...  ...stakeholder communication. Partner with control owners, system owners, product teams,...  ...field. 3‑5+ years of experience in IT audit, IT risk management, executing security... 
    Contract work

    CFC- Chatham Financial Corporation

    Kennett Square, PA
    5 days ago
  •  ...capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.... 
    Senior

    Vanguard

    Malvern, PA
    16 days ago
  •  ...role. This position is to provide expert IT technical lead services in a large-scale...  ...drive change and foster a Secure DevOps culture across teams. As much technology is...  ...and configuring security roles and access controls in Dynamics 365. Proven ability to architect... 
    Senior
    Work experience placement
    Work at office

    Vanguard

    Malvern, PA
    23 hours ago
  •  ...Commonwealth of Pennsylvania, and local regulations while promoting a culture of safety, accountability, and proactive risk reduction across...  ..., including property, liability, workers' compensation, cyber, and other applicable coverages. Serve as liaison with insurance... 
    Cyber
    Full time
    Local area

    GovernmentJobs.com

    Media, PA
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Sr. Director, GRC, IT Controls & Cyber Culture, Orthopedics. Be the first to apply!