Lenovo

Come be a part of the next generation of Managed Services and Solutions at Lenovo! This position is for a Cyber Security Program Leader in the Solutions & Services Group (SSG).  This is an exciting role that will give you the opportunity to work with Lenovo Product teams around the world to help Lenovo Business Units align with various regional, national and international security standards and regulations. You will be working alongside some of the best security teams in the industry and will join a growing team of security professionals, leading strategic security programs and initiatives. 

What you'll be doing (responsibilities)

• Act as a key point of contact with senior management, information security management and business unit stakeholders for cybersecurity-related communications.
• Monitor all information security projects and procurement from inception to successful completion, fully understanding the purpose of projects, technologies and their value-add to the organization.
• Promote a strong security culture within the security department, but also organization-wide across management and employees.
• Leading a security management team to ensure that solutions are designed, delivered and operated in accordance with security policy.
• Working cross-functionally to develop strategies to identify, mitigate and manage current and emerging cyber threats.
• Coordinating technical engagements ranging from, but not limited to, risk assessments, penetration testing, application security, business continuity, third parties and compliance reviews.
• Ensuring the mitigation of security incidents raised to the information security team.
• Demonstrating leadership, providing support and mentoring to other members of the security management team.

What you'll need (requirements)

• Cyber security leadership experience gained in, or working as part of a Managed Service provider.
• Preferably 12+ years’ of relevant work experience and 5+ years technical hands-on or team lead security, audit and risk management experience.
• Knowledge and experience of implementing ISO27001, NIST, CIS and other similar standards/frameworks.
• Strong operational experience of managing cyber security and risk within fast-paced technology environments.
• A good working level of technical knowledge of architectural techniques to prevent, mitigate and manage security threat.
• General understanding of service design, delivery concepts and control frameworks.
• Excellent communications skills and stakeholder management experience.
• Ability to think of long-term strategic solutions as well as immediate resolutions to problems.
• The ability to create, develop and maintain security policies and practices.
• Excellent problem solving, critical thinking, analytical and decision making skills, solid organizational skills and the ability to multi-task, prioritize workload and delegate responsibilities.
• Strong understanding of financial planning and analysis.
• Ability to work effectively with a variety of personalities, adapting the approach to effectively reach and develop the team. Uses this skill as well as functional knowledge to both earn and maintain a high level of credibility with the team.