General Information

Req #
WD00010771
Career area:
Hardware Engineering
Country/Region:
China
State:
Beijing
City:
北京(Beijing)
Date:
Friday, September 24, 2021
Working time:
Full-time

Why Work at Lenovo

Here at Lenovo, we believe in smarter technology for all, so we spend our time building a society that’s brighter and more inclusive. 

And we go big. No, not big—huge.

We’re not just a Fortune Global 500 company, we’re one of Fortune’s Most Admired. We’re in 180 markets, working with 63,000 brilliant colleagues and counting. And we’re known for the world’s most complete portfolio of smart technology, from devices to software to infrastructure.

With our ingenuity, we help millions—not just the select few—experience our version of a smarter future. 

The one thing that’s missing? Well… you...

Description and Requirements

Job description

1. Participate in the formulation, implementation, improvement and optimization of the company's DevSecOps process;

2. Participate in the design and planning of security products on the DevSecOps link, including but not limited to code white box scanning, IAST/RASP, IDE security plug-ins, etc.;

3. Familiar with the risk points and security solutions of mainstream application frameworks, and participate in vulnerability emergency response work;

4. Output and maintain a unified safety solution, and can promote the training and implementation of the safety solution

Job requirements:

1. More than 3 years of working experience as a security engineer in the Internet industry, with security tool design and development experience preferred;

2. Have DevSecOps/SDL work experience, and have experience in establishing DevSecOps/SDL process specifications in an Internet company is preferred;

3. Those who have expertise in vulnerability mining, penetration testing, code auditing and security solutions are preferred;

4. Experience in the use, testing, and development of application security products such as waf, rasp, source code scanning, etc. is preferred;

5. Self-driven ability, with good English communication skills, and a good sense of teamwork.

bonus:

1. Those engaged in IOT security-related research are preferred;

2. Participated in a large CTF and achieved an excellent ranking or submitted high-risk vulnerabilities in CVE/CNVD/CNNVD preferred;

3. Holders of CISSP are preferred;

4. Have good communication skills, coordination skills, understanding skills, and have a strong sense of responsibility and team management skills. Those who can withstand a certain intensity of work pressure are preferred.

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any federal, state, or local protected class.