Director Corp Product Security Office

Lenovo is seeking a leader and manager for the Corporate Product Security Office. The CPSO is missioned to ensure Lenovo is an industry-leading trustworthy supplier of IT products and services across all customer segments and geographies. The CPSO ensures consistent product security policies, standards, and processes are driven across Lenovo's business units to gain and maintain the trust of our customers. The group also manages and executes security programs such as Trusted Supplier and Product Security Incident Response.This position will lead a team to develop and drive product security policies, standards, processes, testing, and governance to ensure Lenovo's products meet strict security requirements. In addition to directly managing security programs which span the enterprise, scope of the role includes coordinating security processes with business-unit security leaders from each product area, and communicating specifics of Lenovo's product security commitment and programs directly to customers.
Position Requirements
Primary responsibilities: This role requires broad knowledge of cybersecurity principles, along with experience in SDLC, secure SW design principles and practices, knowledge of ethical hacking and vulnerability testing, and new/emerging security areas supporting cloud and IOT. Responsibilities include identifying, prioritizing, and driving execution of required security programs, as well as staffing and executing governance and compliance to policies and standards. In addition to technical responsibilities, scope of the role includes staffing talent and needed skills, and direct people management of the group. Finally, strong communication skills are needed as this role interacts and communicates Lenovo security programs directly with end customers, while also gathering feedback on customer needs, requirements, and perceptions. In addition to cybersecurity knowledge, a competitive candidate must exhibit leadership qualities such as being a motivated self-starter, driven to succeed, committed to excellence, and able to motivate and communicate a vision for the organization. Main job tasks and responsibilities include:? Own and drive development of the strategy and operating principles for the CPSO, including creating, maintaining and ensuring compliance to Lenovo's Product Security policies and standards.? Define the programs and initiatives necessary to meet the CPSO mission and Lenovo's product security policy.? Drive implementation of product security programs to ensure customer and Lenovo risks are minimized. For example, drive execution of PSIRT and Trusted Supplier programs by CPSO. ? Work with the Business Unit security groups to implement Lenovo Secure Development Lifecycle processes (Lenovo SDLC).? Create and communicate Lenovo's product security message to build trust with all customers world-wide, including commercial and consumer segments. ? Ensure resources, skills, and expense requirements are defined and allocated to execute required programs.? Lead and motivate a team of security and project management professionals to achieve the CPSO mission.? Work closely with the Business Unit security groups to create a network of cybersecurity professionals and teams to execute Lenovo's security programs. Drive communications with and across these groups to ensure synergy and optimize/leverage skills and resources. ? Communicate effectively with senior management on risks, threats, and opportunities around customer trust in Lenovo's product security. Basic Requirements:? 10+ years of experience in cybersecurity field as a practitioner and leader.? Bachelors Degree in IT or related discipline, such as Computer Science or Engineering, or equivalent related work experience required.Preferred Requirements? Working knowledge of latest technical trends in cybersecurity, including SDLC processes, device/workstation/server/network/cloud vulnerabilities and exploits, and security test tools and processes, ? Strategic perspective and thinker, with ability to focus on and resolve details.? Strong verbal and written communication skills, with experience communicating directly with customers.? Self-motivated and results driven; able to motivate and cultivate a collaborative work environment.? Ability to multi-task and achieve results working in a high-pressure environment while adapting to the changing demands of the business.? Masters Degree in IT or related discipline a plus.? Cybersecurity specific training and certifications a plus.
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Director, Global Product Management
Greensboro, NC Fortive
Property Security Officer
Chapel Hill, NC The University of North Carolina
Product Security Ethical Hacker
Bynum, NC Lenovo
Product Security Engineer
Bynum, NC Lenovo
Director, Product Management Excellence, Lifec...
Davidson, NC Ingersoll Rand