Senior Director, Identity & Access Mgmt, Orthopedics

Johnson & Johnson announced plans to separate our Orthopaedics business to establish a standalone Orthopaedics company, operating as DePuy Synthes. The process of the planned separation is anticipated to be completed within 18 to 24 months, subject to legal requirements, including consultation with works councils and other employee representative bodies, as may be required, regulatory approvals and other customary conditions and approvals. Should you accept this position, it is anticipated that, following conclusion of the transaction, you would be an employee of DePuy Synthes, and your employment would be governed by DePuy Synthes employment processes, programs, policies, and benefit plans. In that case, details of any planned changes would be provided to you by DePuy Synthes at an appropriate time and subject to any necessary consultation processes. About DePuy Synthes

DePuy Synthes is a global leader in Orthopaedics, advancing patient care through innovative solutions across joint reconstruction, trauma, spine, sports medicine, and related surgical technologies. As DePuy Synthes separates from Johnson & Johnson to become the world's largest, most comprehensive Orthopaedics-focused company, the organization is entering a defining chapter-establishing its own corporate identity, voice, culture, and reputation while continuing to serve patients, customers, and healthcare systems around the world. Job Overview

The Sr. Director, Identity & Access Management (IAM) is a senior IT and Cybersecurity leader responsible for defining and executing the enterprise IAM strategy to protect DePuy Synthes' digital ecosystem, products, and patient-adjacent technologies. This role has a critical impact on safeguarding sensitive data, enabling secure business transformation, and ensuring regulatory compliance across a global organization. The position partners closely with IT, Cybersecurity, Compliance, Legal, and business leaders to balance security, usability, and scalability while leading a high-performing IAM organization and reports into the DePuy Synthes Technology organization. Key Responsibilities

• Define and lead the enterprise IAM strategy, roadmap, and operating model aligned to DePuy Synthes business and cybersecurity objectives.
• Oversee identity lifecycle management, access governance, authentication, authorization, and privileged access management across global platforms.
• Ensure IAM capabilities meet regulatory, privacy, and audit requirements, including support for healthcare, data protection, and security standards.
• Partner with IT and business leaders to embed secure-by-design identity controls into applications, cloud platforms, and digital initiatives.
• Lead and develop a global IAM organization, including talent strategy, succession planning, and performance management.
• Establish and monitor IAM metrics, risk indicators, and service performance to drive continuous improvement and transparency.
• Manage third-party IAM vendors and service providers, ensuring contractual performance, cost effectiveness, and innovation.
• Act as a senior advisor on identity-related risk, incidents, and escalations, including executive and board-level communications when required.

• Required: Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field.
• Preferred: Master's degree (MS, MBA, or equivalent) with a focus on technology, security, or business leadership.

Experience and Skills

• 12-14 years of experience in IT and/or Cybersecurity roles, with significant focus on Identity & Access Management at an enterprise scale.
• Deep knowledge of IAM technologies, including identity governance, SSO, MFA, PAM, and directory services.
• Demonstrated ability to translate business needs into secure, scalable IAM solutions.
• Strong stakeholder management and executive communication skills.

Preferred

• Experience supporting healthcare, life sciences, or medical device organizations.
• Proven leadership experience managing global teams and complex IAM programs in a regulated environment.
• Experience with large-scale cloud and hybrid IAM implementations.
• Familiarity with global privacy and security regulations impacting identity and access controls.
• Demonstrated success leading transformational security initiatives.

Other

• Language: English (additional languages a plus).
• Travel: Up to 20%, domestic and international.
• Certifications (preferred): CISSP, CISM, CIAM, or equivalent IAM/security certifications.

$178,000.00 - $307,050.00 Additional Description For Pay Transparency

• Vacation - 120 hours
• Sick time - 40 hours per calendar year; for employees who reside in the State of Colorado - 48 hours per calendar year; for employees who reside in the State of Washington - 56 hours per calendar year
• Holiday pay, including Floating Holidays - 13 days per calendar year
• Work, Personal and Family Time - up to 40 hours per calendar year
• Parental Leave - 480 hours within one year of the birth/adoption/foster care of a child
• Bereavement Leave - 240 hours for an immediate family member: 40 hours for an extended family member per calendar year
• Caregiver Leave - 80 hours in a 52-week rolling period
• Volunteer Leave - 32 hours per calendar year
• Military Spouse Time-Off - 80 hours per calendar year

Johnson and Johnson is committed to providing an interview process that is inclusive of our applicants' needs. If you are an individual with a disability and would like to request an accommodation, please email the Employee Health Support Center ( (see below) ) or contact AskGS to be directed to your accommodation resource.