Why Work at Lenovo
Here at Lenovo, we believe in smarter technology that builds a brighter, more sustainable and inclusive future for our customers, colleagues, communities, and the planet.
And we go big. No, not big-huge.
We're not just a US$70 billion revenue Fortune Global 500 company, we're one of Fortune's Most Admired. We're transforming the world through intelligent transformation, offering the world's most complete portfolio of smart devices, infrastructure, and solutions. With more than 71,500 employees doing business in 180 markets, we help millions-not just the select few-experience our version of a smarter future.
The one thing that's missing? Well... you...
Description and Requirements
Who You Will Work
With At Lenovo, we manufacture one of the world's widest portfolios of connected products, including PCs (ThinkPad, Yoga, Lenovo Legion), tablets, smartphones and workstations as well as augmented and virtual reality (Mirage, ThinkReality) and smart home/office solutions. We are also building an innovative portfolio of software and services which are changing the industry. Lenovo is creating the capacity and computing power for the connections that are changing business and society.
Overview: This position is for a Sr. Cloud Security Architect in the PCSD Security Center of Excellence. This is an exciting role where you will get to help create and drive cloud security strategy for a multi-billion dollar organization that is the #1 PC maker in the world. You will also get to help design and test the security of Lenovo's Cloud Products and Services. Job Description: Lenovo is searching for a Sr. Cloud Security Architect to join our PCSD Product Security Team to help lead the secure design & development of Global Lenovo Cloud Products and to help oversee the operational security of Cloud products in production. The Cloud Security Architect will work with Lenovo Engineering and Product teams around the world to continuously improve the security posture of all cloud products and services in alignment with Lenovo Security policies, standards, and processes as well as local, regional and international cloud security standards and regulations. The ideal candidate is familiar with cloud cybersecurity best practices, modern DevSecOps automation tools. The candidate should also be skilled in both AWS and Azure Cloud Security. AliBaba AliCloud Security experiences is a plus. We are looking for someone with a security mindset who "thinks like an attacker".
Responsibilities:

• Perform cybersecurity control and risk assessments of proposed and existing product and infrastructure architecture for compliance with Lenovo Requirements and international cloud security best practices, recommending technical, administrative and physical remediations and mitigations for identified risks and vulnerabilities
• Develop service security and compliance requirements for SaaS multi-tenant systems
• Design and develop cloud security architectures and perform architecture design reviews
• Help Design, Implement and Oversee Operation of DevSecOps solutions to secure complex CI/CD pipelines
• Implement, maintain and improve existing industry best practices of cloud security controls such as:
• Monitoring & Logging
• Identity and Access Management
• Encryption
• Data Security & Privacy
• Incident Response & Forensics
• WAF, RASP, SIEM, IDS/IPS, etc.
• Provide guidance to R&D and Product Management on defining and prioritizing development of secure SaaS offerings
• Prepare and deliver training and security awareness activities to the Engineering teams
• Acquire relevant knowledge, remain up to date, attend cloud security conferences and be involved with the cloud security community
• Drive and help lead cloud security strategy, tools, training, processes, and tactics

Basic Qualifications:

• 5+ years of experience with cloud security (security researcher, security engineer, security architect).
• Bachelor's Degree in Computer Science or related field, or additional 5+ years of cybersecurity experience
• 3+ years experience with AWS and Azure.
• 2+ Experience in: Infrastructure security, security SDLC and secure SaaS practices Cloud Product Threat modeling experience

Preferred Qualifications:

• Experience doing code review for configuration management tools and scripting languages
• Experience with all DevSecOps Tool Types including SAST, DAST, IAST, Feature Flag Tools, Threat Modeling, Fuzzing, etc. Experience with FedRAMP certification
• Hand-on experience with AWS security best practices and AWS services Security standards and practices (CSA, OWASP, SANS, etc.) Security of relational databases (MySQL, MS SQL Server, Oracle)
• Security management certificates (CISSP, CSSLP, CISM, etc.)
• Has presented at security conferences (BlackHat, OWASP, etc.)
• Experience with as many of these as possible; Terraform, Ansible, Jira, Bitbucket, and Confluence, Artifactory, JFrog, GitHub, Jenkins GCP and AliCloud experience
• Experience with GDPR and CCPA
• Security reviews for code/design/architecture and requirements:
• Cloud Security standards such as CSA CCM, ISO 27017, ISO 27018, Fedramp etc. Infrastructure Security and IAC Security Container Security Docker & Kubernetes Security Identity management and authentication systems and protocols (Active Directory, LDAP, SAML, RADIUS)
• Linux/Unix and Windows OS Network architecture and security configurations
• Python
• Ensure their accurate completion 1 or more Cloud Security Certifications such as CCSK, CCSP, or SANs Cloud Related Certs

The base salary range for this position in Colorado, New York City, Nevada and Washington , is $150,000 - $210,000. Individuals may also be considered for bonus and/or commission. Lenovo's various benefits can be found on www.lenovobenefits.com .
#LI-DB1
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any federal, state, or local protected class.
Lenovo adopted a COVID-19 Vaccination Policy for US-based employees. As a condition of employment, employees must adhere to Lenovo's US Vaccination Policy and be fully vaccinated against COVID-19, subject to any applicable accommodations. To be fully vaccinated means individuals must receive the full series of a vaccine either approved by the FDA or WHO and listed by the CDC (e.g. two dose of the Moderna, AstraZeneca or Pfizer-BioNTech vaccines; or one dose of the Johnson & Johnson vaccine). This applies to all US-based employees, contractors and interns, regardless of work location. As a condition of employment, you must provide proof that you are fully vaccinated or follow Lenovo's accommodation process.
* Morrisville - North Carolina - United States of America