Lenovo
SDLC Compliance Security Engineer
Lenovo, Morrisville, North Carolina, United States, 27560
* United States of America - North Carolina - MorrisvilleWhy Work at Lenovo
We are Lenovo. We do what we say. We own what we do. We WOW our customers.Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY).Description and Requirements
This position is for an SDLC Compliance Security Engineer in the Security Center of Excellence for PC and Smart Device business (PCSD). This is an exciting role that will give you the opportunity to work with product teams around the globe to apply emerging world-wide security and AI laws, regulations, and frameworks through our Security Development Lifecycle.
You will join a diverse team of proven security-focused architects and developers.
This role will support many types of Lenovo Products sold in every region of the world.In Summary you will:Track and interpret security laws, regulations, and frameworks world-wideWrite or edit product security standardsDrive SDLC awareness, adherence, and improvementValidate the security program’s effectivenessDocument PCSD’s security maturity with white papers and presentationsRespond to product security annexes and attestations in customer bid requestsPosition RequirementsBasic Qualifications:Bachelors degree in cybersecurity, computer science, computer engineering, or related fields5+ years of cybersecurity experience1+ years of experience with AI/ML technologies and implementing related security controlsStrong written and verbal communications and interpersonal skillsAbility to work independently under tight deadlines, responding to changing business and technical conditions with minimal directionPreferred Qualifications:Experience in a regulatory/compliance or government relations roleOne or more of CISSP, CGRC, GSP, CASP+Experience working in a world-wide teamExperience threat modeling both non-generative and generative AI solutionsExperience with AI model training, inferencing, RAG, prompt engineering, and AI guardrails
#J-18808-Ljbffr
We are Lenovo. We do what we say. We own what we do. We WOW our customers.Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY).Description and Requirements
This position is for an SDLC Compliance Security Engineer in the Security Center of Excellence for PC and Smart Device business (PCSD). This is an exciting role that will give you the opportunity to work with product teams around the globe to apply emerging world-wide security and AI laws, regulations, and frameworks through our Security Development Lifecycle.
You will join a diverse team of proven security-focused architects and developers.
This role will support many types of Lenovo Products sold in every region of the world.In Summary you will:Track and interpret security laws, regulations, and frameworks world-wideWrite or edit product security standardsDrive SDLC awareness, adherence, and improvementValidate the security program’s effectivenessDocument PCSD’s security maturity with white papers and presentationsRespond to product security annexes and attestations in customer bid requestsPosition RequirementsBasic Qualifications:Bachelors degree in cybersecurity, computer science, computer engineering, or related fields5+ years of cybersecurity experience1+ years of experience with AI/ML technologies and implementing related security controlsStrong written and verbal communications and interpersonal skillsAbility to work independently under tight deadlines, responding to changing business and technical conditions with minimal directionPreferred Qualifications:Experience in a regulatory/compliance or government relations roleOne or more of CISSP, CGRC, GSP, CASP+Experience working in a world-wide teamExperience threat modeling both non-generative and generative AI solutionsExperience with AI model training, inferencing, RAG, prompt engineering, and AI guardrails
#J-18808-Ljbffr