Sr Cloud Security Architect
Lenovo
General Information Req # WD00071558 Career area: Cloud Computing Country/Region: United States of America State: North Carolina City: Morrisville Date: Thursday, July 17, 2025 Working time: Full-time Additional Locations: * United States of America - North Carolina - Morrisville Why Work at Lenovo We are Lenovo. We do what we say. We own what we do. We WOW our customers.
Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY).
This transformation together with Lenovo’s world-changing innovation is building a more inclusive, trustworthy, and smarter future for everyone, everywhere. To find out more visit www.lenovo.com, and read about the latest news via our StoryHub. Description and Requirements
The base salary budgeted range for this position is $160,000 - $210,000. Individuals may also be considered for bonus and/or commission. Lenovo’s various benefits can be found on www.lenovobenefits.com.
In compliance with Colorado's EPEWA, the expected application deadline for this position is September 1, 2025. This applies to both external and internal candidates.
#LI-JL1#LI-REMOTE We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, national origin, status as a veteran, and basis of disability or any federal, state, or local protected class. Additional Locations: * United States of America - North Carolina - Morrisville * United States of America * United States of America - North Carolina * United States of America - North Carolina - Morrisville
Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY).
This transformation together with Lenovo’s world-changing innovation is building a more inclusive, trustworthy, and smarter future for everyone, everywhere. To find out more visit www.lenovo.com, and read about the latest news via our StoryHub. Description and Requirements
Lenovo is searching for a Cloud Security Architect to join our PCSD Product Security Team to help lead the secure design & development of Global Lenovo Cloud Products and to help oversee the operational security of Cloud products in production. The Cloud Security Architect will work with Lenovo Engineering and Product teams around the world to continuously improve the security posture of all cloud products and services in alignment with Lenovo Security policies, standards, and processes as well as local, regional and international AI security standards and regulations. The ideal candidate is familiar with cloud cybersecurity best practices and modern DevSecOps automation tools. AWS, Azure, GCP, AliBaba and AliCloud Security experiences is a plus. We are looking for someone with a security mindset who "thinks like an attacker".
Responsibilities:
Perform cybersecurity control and risk assessments of proposed and existing product and infrastructure architecture for compliance with Lenovo Requirements and international cloud security best practices, recommending technical, administrative and physical remediations and mitigations for identified risks and vulnerabilities Develop service security and compliance requirements for SaaS multi-tenant systems Design and develop cloud security architectures and perform architecture design reviews Help Design, Implement and Oversee Operation of DevSecOps solutions to secure complex CI/CD pipelines Implement, maintain and improve existing industry best practices of cloud security controls such as: Monitoring & Logging Identity and Access Management Encryption Data Security & Privacy Incident Response & Forensics WAF, RASP, SIEM, IDS/IPS, etc. Provide guidance to R&D and Product Management on defining and prioritizing development of secure SaaS offerings Prepare and deliver training and security awareness activities to the Engineering teams Acquire relevant knowledge, remain up to date, attend cloud security conferences and be involved with the cloud security community Drive and help lead cloud security strategy, tools, training, processes, and tactics
Basic Qualifications:
Preferred Qualifications:
Experience doing code review for configuration management tools and scripting languages Experience with all DevSecOps Tool Types including SAST, DAST, IAST, Feature Flag Tools, Threat Modeling, Fuzzing, etc. Experience with FedRAMP certification Hand-on experience with AWS security best practices and AWS services Security standards and practices (CSA, OWASP, SANS, etc.) Security of relational databases (MySQL, MS SQL Server, Oracle) Security management certificates (CISSP, CSSLP, CISM, etc.) Has presented at security conferences (BlackHat, OWASP, etc.) Experience with as many of these as possible; Terraform, Ansible, Jira, Bitbucket, and Confluence, Artifactory, JFrog, GitHub, Jenkins GCP and AliCloud experience Experience with GDPR and CCPASecurity reviews for code/design/architecture and requirements: Cloud Security standards such as CSA CCM, ISO 27017, ISO 27018, Fedramp etc. Infrastructure Security and IAC Security Container Security Docker & Kubernetes Security Identity management and authentication systems and protocols (Active Directory, LDAP, SAML, RADIUS) Linux/Unix and Windows OS Network architecture and security configurations Python Ensure their accurate completion 1 or more Cloud Security Certifications such as CCSK, CCSP, or SANs Cloud Related CertsThe base salary budgeted range for this position is $160,000 - $210,000. Individuals may also be considered for bonus and/or commission. Lenovo’s various benefits can be found on www.lenovobenefits.com.
In compliance with Colorado's EPEWA, the expected application deadline for this position is September 1, 2025. This applies to both external and internal candidates.
#LI-JL1#LI-REMOTE We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, national origin, status as a veteran, and basis of disability or any federal, state, or local protected class. Additional Locations: * United States of America - North Carolina - Morrisville * United States of America * United States of America - North Carolina * United States of America - North Carolina - Morrisville
Por favor confirme su dirección de correo electrónico: Send Email