Software Engineer, Product Security

Cybersecurity Software Engineer – Johnson & Johnson

We are searching for the best talent for a Cybersecurity Software Engineer, to be in Santa Clara, CA.

To improve the software cybersecurity of our product.

• Design, implement, and test software solutions for cybersecurity controls.
• Define software cybersecurity requirements and detail the software design of the product based on those requirements.
• Perform software code reviews and design reviews with a cyber‑lens.
• Perform periodic risk assessment of security vulnerabilities in software for the product by identifying and analyzing software vulnerabilities.
• Develop recommendations to mitigate security risks in product software.
• Develop product software using C++ and scripting languages such as bash in an FDA regulated environment.
• Actively collaborate with cross‑functional product partners including Product Security, systems, test and service teams.
• Adhere to organization and product level quality processes outlined in the Quality Management System.

• BS or equivalent in Computer Science, Computer Engineering, or equivalent field.
• 2+ years of software development and testing experience.
• 2+ years of experience with software development using C++.
• 1+ years of experience implementing software controls for product/IOT cybersecurity.
• Knowledge of cybersecurity concepts such as encryption, authentication and authorization.
• Working knowledge of Linux Ubuntu and understanding security controls provided by the operating system.
• Experience working with multi‑threaded applications.
• Familiarity with shell scripting languages including bash.
• Must be at least 18 years of age.
• Ability to travel up to 10% domestic US and internationally, with overnight stay.
• Ability to work onsite at the J&J office in Santa Clara, CA.

• MS/MEng in Cybersecurity, or similar field.
• Familiarity with CI/CD tools and Dev‑Sec‑Ops tools and processes.
• Experience working with Agile methodology as an individual contributor.
• Experience analyzing security risks from sources such as penetration testing, threat modeling, vulnerability management, etc.

Base pay range: $89,000 to $143,750. For the California Bay Area, anticipated base pay range: $103,000 to $165,600.

Eligible for annual performance bonus and long‑term incentive program.

Medical, dental, vision, life insurance, short‑ and long‑term disability, business accident insurance, group legal insurance, pension and 401(k) retirement plan, and various time off benefits. For additional general information, visit

This job posting is anticipated to close on 4/30/25.

Johnson & Johnson is an Equal Opportunity Employer.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law.

We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act. Johnson & Johnson is committed to providing an interview process that is inclusive of our applicants' needs.

If you are an individual with a disability and would like to request an accommodation, please email the Employee Health Support Center (ra-) or contact AskGS to be directed to your accommodation resource.