General Information

Req #
Career area:
Information Technology
Tuesday, February 7, 2023
Working time:
Additional Locations
* Romania - Bucureşti - Bucharest
* United Kingdom - Hampshire - Basingstoke
* Slovakia - Bratislavský kraj - Bratislava

Why Work at Lenovo

Here at Lenovo, we believe in smarter technology that builds a brighter, more sustainable and inclusive future for our customers, colleagues, communities, and the planet.

And we go big. No, not big—huge.

We’re not just a US$70 billion revenue Fortune Global 500 company, we’re one of Fortune’s Most Admired. We’re transforming the world through intelligent transformation, offering the world’s most complete portfolio of smart devices, infrastructure, and solutions. With more than 71,500 employees doing business in 180 markets, we help millions—not just the select few—experience our version of a smarter future.

The one thing that’s missing? Well… you...

Description and Requirements

Check out the video to give you an insight into the TruScale initiative!: Youtube video

This position is for an Operations Security Lead in the Solutions & Services Group (SSG).  This is an exciting role that will give you the opportunity to work with Lenovo Engineering teams around the world to help Lenovo Business Units align with various regional, national and international security standards and regulations. You will be working alongside some of the best security teams in the industry. You will join a growing team of security professionals to protect and maintain the effectiveness of managed service capabilities.

This role requires coordination of incident response (IR) activities across the company and working closely with stakeholders and information security team members. Additionally, individuals engage in suspected and confirmed incidents, which may vary in impact. Coordinators will investigate, validate and communicate known details about the incident and work closely with cybersecurity leadership.

Strong IR skills are required to excel in this role, given the complexity and evolution of internal and external threat actors. Technical and analytical skills are paramount, as well as the ability to communicate effectively with technical and nontechnical colleagues.. The ideal candidate is one who is highly technical but possesses some business acumen, having worked in security administration, incident response and security operations center (SOC) roles. Practical IR management, forensics and hands-on technology experience in security principles is required in this role.

In this role you'll be reporting to the Director, Information Security, Solutions & Services.

What you'll be doing

  • Work closely with information security leadership and business stakeholders and as part of a team of responders.
  • Respond to and investigate internally and externally driven incidents. Response may need to occur out of hours.
  • Review events for anomalies and possible incidents.
  • Regularly participate in incident response tabletop exercises designed to identify gaps, improve skills, enhance communication and engage with key stakeholders.
  • Review technical reports from vulnerability and penetration testing assessments, as well as results from tabletop exercises to identify exposure to future incidents.
  • Refine, recommend and maintain playbooks, policies, procedures and guidelines, and align with industry best practices.
  • Liaison with threat hunting, infrastructure, IT, vulnerability management, threat intelligence and software engineer team members.
  • Participate in monitoring internal and external events and stay tightly aligned with infrastructure, third-party, hosted, on-premises and end-user systems.
  • Document and communicate incident details from initial investigation through closure and post-mortem.
  • Uphold professional accountability to remain educated on incident response skills and abilities.
  • Identify strengths and weaknesses in the program for team members to improve skills and knowledgebase.
  • Openly support the organization, management and executive leadership team, even during times of adversity.
  • Co-ordinating a team of associates and (potentially) onsite and offsite contractors to monitor for and respond to security events 24x7x365.
  • Plan and execute regular incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
  • Automate repetitive tasks and drive efficiencies so analysts can work on more advanced tasks.
  • Manage security event investigations, partnering with other departments as needed.
  • Evaluate and update SOC policies and procedures as appropriate.
  • Partner with the security engineering team to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.

What you'll need to know: 

  • 8 years of relevant working experience
  • Operational Cyber security management experience gained in, or working as part of a Managed Service provider
  • Experience of security tools and technology
  • Good working knowledge of architectural techniques to prevent, mitigate and manage security threat
  • Experience of SIEM solutions, incident management and reporting
  • Excellent communications skills and stakeholder management experience
  • Strong knowledge of security compliance or operations and a technical background with infrastructure or network security
  • Ability to think of long-term strategic solutions as well as immediate resolutions to problems
  • Create, develop and maintain security policies and practices
  • Excellent problem-solving, critical thinking, analytical and decision making skills
  • Understanding of threats and vulnerabilities, in addition to principles of IR and chain of custody.
  • Experience with forensic tools, log correlation and malware analysis solutions.
  • SIEM, threat intelligence platform, directory services, vulnerability management and endpoint configuration experience.
  • Knowledgeable about cloud services, third-party risk management and application security.
  • Strong written and oral communication skills across varying levels of the organization.

What We Will Offer: 
  • An open and stimulating environment within one of the most forward-thinking IT companies.
  • Flat structures and fast decision-making processes.
  • A modern and flexible way of working to combine personal and professional life, working from home.

We are looking forward to discussing this position with you soon!

You will report to SSG (Solutions & Services Group) organization structure.

SSG has been focusing on the expanding IT service market, especially the digital workplace services opportunity, the growing demand for aaS (as-a-Service) model, and customers’ stronger preference for sustainability services. Meanwhile, SSG continued to invest in software tools, platforms, and repeatable vertical solutions with our own IP, and focus on vertical solutions in manufacturing, retail, healthcare, education, and Smart City.  We are expanding TruScale as-a-Service to Digital Workplace solutions, developing our Hybrid Cloud solutions, and exploring Metaverse solutions.

For the candidates applying for the role based in Slovakia: Base gross monthly salary starts from 3.400 EUR. The final offer could be, of course, negotiated higher than the advertised minimum - it all depends on your experience! In addition, there is also variable part (a bonus) in value of 14% of your annual earnings.

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any federal, state, or local protected class.

Additional Locations
* Romania - Bucureşti - Bucharest
* United Kingdom - Hampshire - Basingstoke
* Slovakia - Bratislavský kraj - Bratislava
* Romania, * Slovakia, * United Kingdom
* Romania - Bucureşti , * Slovakia - Bratislavský kraj , * United Kingdom - Hampshire
* Romania - Bucureşti - Bucharest , * United Kingdom - Hampshire - Basingstoke , * Slovakia - Bratislavský kraj - Bratislava