Sr. Director, GRC, IT Controls & Cyber Culture, Orthopedics
$178k - $307.05kJohnson & Johnson Innovative Medicine
At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at jnj.com As guided by Our Credo, Johnson & Johnson is responsible to our employees who work with us throughout the world. We provide an inclusive work environment where each person is considered as an individual. At Johnson & Johnson, we respect the diversity and dignity of our employees and recognize their merit. Job Function: Technology Enterprise Strategy & Security Job Sub Function: Security & Controls Job Category: People Leader All Job Posting Locations: Raritan, New Jersey, United States of America, Raynham, Massachusetts, United States of America, Warsaw, Indiana, United States of America, West Chester, Pennsylvania, United States of America, West Palm Beach, Florida, United States Job Description: DePuy Synthes is recruiting for a(n) Sr. Director, GRC, IT Controls and Cyber Culture. Johnson & Johnson announced plans to separate our Orthopedics business to establish a standalone orthopedics company, operating as DePuy Synthes. The process of the planned separation is anticipated to be completed within 18 to 24 months, subject to legal requirements, including consultation with works councils and other employee representative bodies, as may be required, regulatory approvals and other customary conditions and approvals. Should you accept this position, it is anticipated that, following conclusion of the transaction, you would be an employee of DePuy Synthes and your employment would be governed by DePuy Synthes employment processes, programs, policies, and benefit plans. In that case, details of any planned changes would be provided to you by DePuy Synthes at an appropriate time and subject to any necessary consultation processes. Job Overview This role serves as a senior cybersecurity leader reporting to the CISO, with enterprise accountability for building, maturing, and operationalizing the Governance, Risk & Compliance (GRC) function across DePuy Synthes. The Sr. Director will oversee the BISO manager organization, establish scalable risk governance practices, strengthen security awareness and behavior based culture programs, and drive implementation of IT controls and an enterprise assurance framework. The role will also oversee external cybersecurity assessments and disclosures, including cyber insurance, ESG-related cybersecurity inputs, and other third-party assurance activities. This highly visible leadership role will help ensure cybersecurity risk, compliance, control effectiveness, and cultural adoption are consistently managed across the enterprise in support of business priorities, regulatory expectations, and organizational resilience. Key Responsibilities Build and mature the enterprise GRC function, including governance forums, risk management processes, compliance oversight, control monitoring, issue management, and executive reporting. Provide leadership and oversight for the BISO manager organization, ensuring consistent engagement with business leaders, effective cyber risk advisory support, and alignment of security priorities to business objectives. Lead enterprise cyber risk management activities, including risk identification, assessment, mitigation planning, escalation, and reporting to senior leadership and governance bodies. Own the enterprise cybersecurity policy and standards lifecycle - from creation and implementation to continuous review - ensuring clarity, compliance, and alignment with organizational goals. Oversee SOX cybersecurity and IT control activities, including implementation, operating effectiveness, evidence readiness, remediation tracking, and partnership with Finance, Internal Audit, External Audit, and IT control owners. Establish and operationalize an enterprise IT controls and assurance framework that enables consistent control design, testing, monitoring, reporting, and continuous improvement across the organization. Lead oversight of external cybersecurity assessments and assurance requests, including cyber insurance questionnaires, ESG-related cybersecurity inputs, customer or partner assessments, and other third-party reviews requiring enterprise cyber risk and control representation. Drive cybersecurity compliance with applicable global regulations, standards, and frameworks, ensuring the organization can demonstrate control effectiveness and audit readiness. Lead security awareness, behavior, and culture initiatives that improve workforce accountability, reduce human‑centric risk, and embed secure practices into day‑to‑day business operations. Lead and develop high‑performing cybersecurity leaders and teams, fostering a culture of accountability, collaboration, disciplined execution, and continuous improvement. Provide executive‑level reporting on cybersecurity risk, compliance status, control effectiveness, assurance outcomes, and program maturity to senior leadership and governance bodies. Qualifications Education Required: Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field. Preferred: Master’s degree (MS, MBA, or equivalent) in Cybersecurity, Information Systems, or Business. Experience and Skills Required: 12–14 years of progressive experience in cybersecurity, information security, technology risk management, IT controls, or GRC, including senior leadership roles. Demonstrated experience building or maturing enterprise GRC programs in a regulated, global, or complex operating environment. Experience leading BISO, cyber risk advisory, security governance, or business aligned cybersecurity teams. Deep knowledge of cybersecurity risk management, compliance frameworks, IT controls, SOX control expectations, assurance practices, and audit readiness. Experience overseeing external cybersecurity assessments, including cyber insurance, ESG-related cybersecurity reporting, customer or partner assessments, and third-party assurance requests. Experience building, mentoring, and leading senior level cybersecurity teams. Strong strategic, analytical, and communication skills, with the ability to translate technical risk, control gaps, and compliance obligations into business impact. Preferred: Experience implementing or transforming enterprise IT controls, SOX programs, control testing, remediation governance, and assurance frameworks. Experience driving cybersecurity awareness, behavior change, and culture programs across a large enterprise. Experience operating in complex, global organizations undergoing transformation or separation. Demonstrated success improving cybersecurity maturity, control effectiveness, and risk accountability at scale. Proven ability to influence executive stakeholders and partner effectively across IT, Finance, Internal Audit, External Audit, Legal, Risk, Compliance, and business leadership functions. Other: Language: English (fluent) Travel: Up to 20%, domestic and international Certifications (preferred): CISSP, CISM, CRISC, or equivalent For more information on how we support the whole health of our employees throughout their wellness, career and life journey, please visit Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act. Johnson and Johnson is committed to providing an interview process that is inclusive of our applicants’ needs. If you are an individual with a disability and would like to request an accommodation, please email the Employee Health Support Center (View email address on click.appcast.io) or contact AskGS to be directed to your accommodation resource. #DePuySynthesCareers Required Skills: Preferred Skills: Business Process Design, Crisis Management, Critical Thinking, Cybersecurity, Developing Others, Inclusive Leadership, Industry Analysis, Information Security Auditing, Information Security Management System (ISMS), Information Technology (IT) Security Assessments, Information Technology Strategies, Leadership, Presentation Design, Process Optimization, Risk Management Framework, Security Architecture Design, Security Policies, Strategic Thinking The anticipated base pay range for this position is : $178,000.00 - $307,050.00 Additional Description for Pay Transparency: Subject to the terms of their respective plans, employees are eligible to participate in the Company’s consolidated retirement plan (pension) and savings plan (401(k)). This position is eligible to participate in the Company’s long-term incentive program. Subject to the terms of their respective policies and date of hire, employees are eligible for the following time off benefits: Vacation –120 hours per calendar year Sick time - 40 hours per calendar year; for employees who reside in the State of Colorado –48 hours per calendar year; for employees who reside in the State of Washington –56 hours per calendar year Holiday pay, including Floating Holidays –13 days per calendar year Work, Personal and Family Time - up to 40 hours per calendar year Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child Bereavement Leave – 240 hours for an immediate family member: 40 hours for an extended family member per calendar year Caregiver Leave – 80 hours in a 52-week rolling period10 days Volunteer Leave – 32 hours per calendar year Military Spouse Time-Off – 80 hours per calendar year For additional general information on Company benefits, please go to: - At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at Do Not Sell or Share My Personal Information Limit the Use of My Personal Information
$196k - $342.7k
...is recruiting for a(n) Sr. Director, Data Science & AI.... ...corporate identity, voice, culture, and reputation while... ...plans to separate our Orthopedics business to establish... ...priorities and IT objectives, spanning machine... ...and Human in the loop controls. Evaluate and manage the...SeniorFull timeWork experience placementLocal areaImmediate start- Legrand, North America is seeking a Human Resources Manager in Warsaw, IN. The role involves being an internal consultant to develop high-performing teams and implement HR programs including employee relations, talent development, and workplace safety. The ideal candidate...Senior
- ...Overview Our client in Warsaw, IN is looking for an IT Support Technician. This is a contract to direct hire position. The IT Support... ..., we have been helping our customers integrate electronics and controls with mechanical design to expand product value, develop AI,...SuggestedContract workFlexible hours
- ...Controls Engineer We are seeking a Controls Engineer to support Body production operations by maintaining, troubleshooting, and improving... ...moves our business forward. Our client fosters a culture of excellence, innovation, and mutual respect, and is motivated...Senior
- ...organizational success. In coordination with Corporate HR, Facilities, IT departments, accurately process employee changes for new hires,... ...& Central America (LNCA) is a leader in the AV, Lighting & Controls, Electrical, and Data Center markets. LNCA offers comprehensive...SuggestedTemporary workWork at officeLocal areaWorldwideLong distanceMonday to FridayFlexible hours
- ...throughout every element of a Slate, because people should have control over how their trucks look, feel, and represent them. WHO WE... ...to ensure smooth transitions and minimal disruption. Promote a culture of continuous improvement and innovation. Qualifications Bachelor...Work at officeLocal area
- ...Warsaw, Indiana – IT Systems Engineer #1058363 Responsibilities Manage enterprise systems including Windows, Linux, and hybrid cloud platforms (Azure, AWS). Oversee Active Directory, identity management, virtualization (VMware, Hyper‑V), and enterprise storage / backup...Immediate start
- ...design reviews with Tooling Team personnel, purchasing personnel, and outside tool suppliers. Completes activities of the change control policy and Corrective and Preventive Action (CAPA) system in accordance with corporate standards. Partners with Quality during...Senior
$50 - $60 per hour
DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor. We're currently expanding into an exciting new area – teaching...SeniorHourly payContract workFor contractorsWork experience placementRemote work- ...identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, marital status, parental status, cultural background, organizational level, work styles, tenure, and life experiences. Or for any other reason. Work Authorization...SeniorWork at office
$78.1k - $125.24k
...America Job Description: We are searching for the best talent for a Sr. Executive Administrative Assistant. This hybrid role can be... ...processes. Support internal communities (e.g., Credo Committee, Culture Team, WiSTEM, ERGs) through coordination and logistics. Independently...SeniorFull timeContract workWork at officeLocal areaImmediate startShift work- ...most valuable function‑specific (think Operations, Marketing, or IT) tools, enabling experts on those teams to effectively share and... ...early employee in our growing Warsaw office, contributing to a culture that keeps the company’s workplace balanced, performant, inclusive...SeniorContract workWork at officeWork from homeWorldwideHome officeFlexible hours
$150k - $300k
...States of America Job Description: DePuy Synthes is recruiting for a Director, ERP/SAP Product and Platform Architecture located in Raynham,... ...Synthes’ transformation and growth, ensuring alignment between IT systems and business needs across functions. This is an exciting...Full timeLocal areaImmediate start- Bowen Health in Indiana is seeking a Benefits Administrator to manage end-to-end delivery of employee benefits, including health, retirement, life insurance, and wellness programs. You will ensure accurate enrollment, carrier coordination, and compliance while partnering...
- ...throughout every element of a Slate, because people should have control over how their trucks look, feel, and represent them. Who We... ...disability, age, veteran status, marital status, parental status, cultural background, organizational level, work styles, tenure and life...Senior
- Job Description Job Description Senior Process Optimization Engineer Bring technical manufacturing depth, project leadership, and process excellence to our Operations. In this role, you’ll partner with internal and external customers to shape, document, and continuously...SeniorWork at office
- ...non-Family Express locations when necessary. Position Responsibilities: Meets and exceeds expectations of the Family Express culture including building relationships, promoting the Living Brand, and serves as a product brand advocate as outlined in the Culture Audit...All shiftsShift work
- ...insurance, life insurance, and a sports card. Essential work tools—a laptop and a company phone. Opportunities to participate in team-building events and internal initiatives that foster a culture of collaboration and engagement. Benefits cafeteria—Worksmile. #J-18808-Ljbffr...SeniorFlexible hours
$132k
...ensuring liquidity, banking efficiency, and strong financial controls while partnering with internal teams and external banking partners... ...visit Johnson & Johnson announced plans to separate our Orthopedics business to establish a standalone orthopedics company, operating...SeniorFull timeWork at officeLocal areaImmediate start$130k - $145k
...technical quality authority for coating, sealing, e-coat, and bonding processes across manufacturing operations. Develop and maintain control plans, inspection strategies, and quality standards for coatings and bonded structures to ensure consistent performance. Lead...SeniorPermanent employment- ...Job Description Job Description The primary purpose for the Sr. Manufacturing Engineer is to contribute technical manufacturing, project management skills, and process excellence thinking to our Operations. This role combines collaboration with both external and internal...SeniorWork at office
- ...and plant launches, and building a strong, data-driven quality culture across all operations. This leader will serve as the primary... ...and Engineering teams to ensure robust process capability and control. Drive containment actions, root cause analysis, and implementation...SeniorPermanent employment
$136k - $204k
...standardisation of global processes Establish clear frameworks, controls, and handoffs across teams and systems Lead process mapping,... ...on execution discipline, ownership, and pace Build a culture that balances strong people leadership with measurable results...SeniorFull timeTemporary workWork at officeLocal areaRemote work$114k - $172k
Job Description Job Description Senior Tooling Engineer – Seats Production Position Summary The Senior Tooling Engineer – Seats Production is responsible for the design, development, sourcing, validation, and launch support of production tooling used in automotive...SeniorWork at officeShift workWeekend work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Sr. Director, GRC, IT Controls & Cyber Culture, Orthopedics. Be the first to apply!
- director of equity and inclusion Warsaw, IN
- director of community outreach Warsaw, IN
- senior manager legal Warsaw, IN
- senior manager automotive Warsaw, IN
- senior Warsaw, IN
- senior implementation engineer Warsaw, IN
- senior level Warsaw, IN
- senior performance engineer Warsaw, IN
- senior performance tester Warsaw, IN
- senior manager diversity & inclusion Warsaw, IN

