Cyber Security Auditor

**General Information**:

- Req #
- WD00078942
- Career area:

- Information Technology
- Country/Region:

- India
- State:

- Karnataka
- City:

- BANGALORE
- Date:

- Tuesday, February 25, 2025
- Working time:

- Full-time

**Additional Locations**:

- India - Karnātaka - Bangalore
- India - Karnātaka - BANGALORE

**Why Work at Lenovo**:

- We are Lenovo. We do what we say. We own what we do. We WOW our customers.

Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY).

**Description and Requirements**:
Security Compliance and Assurance Auditor

This position is for a Cyber Security Auditor in the Solutions & Services Group (SSG). This is an exciting role that will give you the opportunity to work with Lenovo Product teams around the world to help Lenovo Business Units align with various regional, national and international security standards and regulations. You will be working alongside some of the best security teams in the industry. You will join a growing team of security professionals to help assess risk and to implement risk remediation and mitigation strategies and tactics.

This role will work hand in hand with business executives, product managers, architects, engineers, devops and developers to conduct assessments and to build and present reports and remediation plans and roadmaps. After you report findings and produce remediation reports you will work with the business teams to help them mitigate the issues.

This position will be keeping metrics and KPIs to track assessment work and alignment to standards over time ensuring that growth, improvements, and gaps are accurately communicated to management. You’ll work with development and operations teams to coordinate tests and ensure that solutions are tested within an appropriate time frame.

**What you'll be doing**
- Assessing and advising design, service, operations teams on security requirements and implementation.
- Provide constructive advice and challenge on the management of cyber risks throughout the organisation
- Work closely with IT and other stakeholders to ensure a multi-layered approach to cyber security is adopted, ensuring the confidentiality, integrity and availability of IT services
- Advising design, service, operations teams on security requirements and implementation.
- Working cross-functionally to develop strategies to identify, mitigate and manage current and emerging cyber threats
- Providing SME support to other business functions
- Providing a Risk Management approach to ensure information security solutions and controls are commensurate to the business risks
- Create, develop and maintain security policies and practices

**What you'll need**
- CISSP/CISM/CISA/CEH/ or similar level qualification
- Security management experience gained in, or working as part of a Managed Service provider
- Knowledge and experience of ISO27001, NIST, CIS and other similar standards/frameworks
- Strong operational experience of managing cyber security and risk within fast-paced technology environments
- Experience of security tools and technology
- Good working knowledge of architectural techniques to prevent, mitigate and manage security threat
- Experience of consulting engagements on cyber management
- Excellent communications skills and stakeholder management experience
- Strong knowledge of security compliance or operations with a broad technical security background
- Ability to think of long-term strategic solutions as well as immediate resolutions to problems
- Create, develop and maintain security policies and practices
- Excellent problem solving, critical thinking, analytical and decision making skills

**Additional Locations**:

- India - Karnātaka - Bangalore
- India - Karnātaka - BANGALORE
- India
- India - Karnātaka
- India - Karnātaka - Bangalore ,
- India - Karnātaka - BANGALORE

**NOTICE FOR PUBLIC**

At Lenovo, we follow strict policies and legal compliance for our recruitment process, which includes role alignment, employment terms discussion, final selection and offer approval, and recording transactions in our internal system. Interviews may be conducted via audio, video, or in-person depending on the role, and you will always meet with an official Lenovo representative.