Lenovo · 1 day ago
Manager, Security Risk Assessment Program
North Carolina, United States
Full-time
Onsite
Mid, Senior Level
$100K/yr - $115K/yr
8+ years expLenovo is a global technology powerhouse focused on delivering Smarter Technology for All. The Manager, Security Risk Assessment Program plays a critical role in operationalizing the enterprise security assurance and risk management functions, supporting cross-domain assurance activities and ensuring Lenovo’s security posture is continuously improving.
ComputerConsumer ElectronicsElectronicsHardwareMobileWearables
Responsibilities
Maintain the enterprise security risk register, ensuring timely intake, analysis, updates, and reporting
Collaborate with stakeholders from each security domain to document risk mitigation strategies, target states, and owner accountability
Support quarterly risk review cycles and integration of security risks into enterprise risk management (ERM) dashboards
Execute assurance reviews and control validation activities across internal domains (cyber, physical, supply chain, product, data)
Coordinate collection of control evidence and remediation tracking in partnership with audit, compliance, and infrastructure teams
Help prepare the security function for internal audits, stakeholder reviews, or external assessments beyond formal certification scopes
Support the creation of assurance dashboards, risk posture metrics, and trend reporting for governance forums and executive stakeholders
Maintain templates, logs, and records that support governance and assurance transparency
Assist in cross-functional program planning, tool enablement, and process improvements in governance and assurance workflows
Contribute to internal education efforts on risk and assurance accountability across business units and technical teams
Qualification
Required
Bachelor's degree in Information Security, Risk Management, or related field; certifications such as CRISC, CISA, or ISO 27001 Lead Implementer are a plus
8+ years of experience in security risk management, assurance, GRC, or compliance roles
Familiarity with governance frameworks such as NIST CSF, ISO 27001, COBIT, or SOC 2
Preferred
Experience working across global, cross-functional teams to execute governance or control-related activities
Strong analytical skills and attention to detail in risk documentation, evidence management, and reporting
Experience operationalizing risk registers, GRC tooling, or assurance workflows
Ability to interpret technical control evidence and translate it into business-aligned assurance outputs
Familiarity with multiple security domains (e.g., physical, product, supply chain)
Comfortable managing deadlines across regions and time zones
Benefits
Lenovo’s various benefits can be found onwww.lenovobenefits.com.
Company
Lenovo
Lenovo Group is a computer technology company that manufactures personal computers, smartphones, televisions, and wearable devices.
10001+ employees
H1B Sponsorship
Lenovo has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (76)
2024 (52)
2023 (75)
2022 (82)
2021 (58)
2020 (67)
Funding
Current Stage
Public CompanyTotal Funding
$3.35BKey Investors
Alat
2025-01-08Post Ipo Debt· $2B
2024-04-01Post Ipo Debt· $500M
2017-10-03Post Ipo Equity· $500M
Leadership Team
Yang Yuanqing
Chairman & CEO
Greg Huff
CTO, CSO, and SVP of Development, Quality, and Customer Care, Infrastructure Solutions Group
Recent News
Company data provided by crunchbase