Director, 3rd Party RM. Program (BPO)

This job is with Johnson & Johnson, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity.

As guided by Our Credo, Johnson & Johnson is responsible to our employees who work with us throughout the world. We provide an inclusive work environment where each person is considered as an individual. At Johnson & Johnson, we respect the diversity and dignity of our employees and recognize their merit.

Job Overview: The Director, Third‑Party Risk Management Program provides strategic leadership and enablement of an effective enterprise-wide third-party risk management (TPRM) program, with a focus on mitigating anti-bribery/anti-corruption risks (e.g., Foreign Corrupt Practices Act and similar laws) in third-party intermediary engagements. Serving as the Business Process Owner (BPO) for TPRM, this individual works closely with stakeholders across Compliance, Legal, Information Technology (IT), Procurement, and other functions to define program requirements, implement enabling technology solutions, and continuously improve global processes and tools.

This role requires a forward-looking leader who can champion an ethical business culture and foster organizational change. The Director will model integrity, empower cross-functional collaboration, and ensure that managing third-party compliance risk becomes an integral, ongoing part of the company's business processes. By balancing thorough risk controls with business enablement, the Director of TPRM helps protect the company's reputation and ensure sustainable growth in a complex global environment. This role reports to the Senior Director HCC Risk Mgmt Strategy & Enablement.

Key Responsibilities:

• Provide strategic direction and governance for the global TPRM program as the BPO, establishing policies, procedures, and oversight structures to manage third-party intermediary risks enterprise-wide.
• Set global standards and drive consistency across all regions while accommodating local regulatory requirements.
• Develop and maintain a risk-based segmentation and assessment framework for third parties, ensuring each intermediary is categorized by risk level (e.g. by country corruption index, service type, HCP/HCO interactions) to ensure third parties receive appropriate due diligence and oversight.
• Oversee robust pre-engagement due diligence processes (e.g. background checks, sanctions screenings, reputation reviews) to identify potential anti-corruption red flags or compliance issues before onboarding new third-party intermediaries.
• Ensure due diligence depth is commensurate with the third party's risk profile.
• Partner with Legal in providing contractual safeguards (e.g., Compliance clauses, audit rights, etc.).
• Partner with IT and digital teams to define requirements and implement technology solutions (e.g., third-party lifecycle management platforms, due diligence tools, automated workflow systems) that increase efficiency and effectiveness of TPRM processes.
• Continuously evaluate new tools (e.g., risk intelligence databases, automation, data analytics platforms) and drive enhancements to keep the program current with best practices and evolving risks.
• Drive development of data analytics and reporting capabilities to continuously measure and improve the TPRM program.

Qualifications:

Education Required: Bachelor's degree in Law, Business, Compliance, Finance, Healthcare Administration, or a related field. Preferred: Advanced degree or professional certification (e.g., Compliance, Legal, Risk, or Ethics‑related).

Experience and Skills Required: 10-12+ years of progressive experience in healthcare compliance, legal, risk management, audit, or related fields. Strong knowledge of healthcare compliance laws, regulations, and enforcement practices. Proven ability to influence senior leaders and drive compliant decision‑making in highly regulated environments. Demonstrated experience in the development and implementation of processes and systems to support risk management programs. Strong analytical skills, sound judgment, and effective decision‑making and problem‑solving capabilities. Excellent written and verbal communication skills, with the ability to communicate complex compliance topics clearly. Strong change management and stakeholder engagement skills are key to successfully embedding the TPRM program into an organization's operations and continuously improving it over time.

Preferred: Experience in medical devices, pharmaceuticals, or broader life sciences industries. Experience operating in highly matrixed, multicultural organizations.

Other Language: Fluency in English required.

Travel: Up to 20-30%.

Certifications: Compliance, legal, or ethics certifications preferred but not required.

Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act.

Johnson & Johnson is committed to providing an interview process that is inclusive of our applicants' needs. If you are an individual with a disability and would like to request an accommodation, external applicants please contact us via https://www.jnj.com/contact-us/careers, internal employees contact AskGS to be directed to your accommodation resource.