IT Security Officer

We are Lenovo. We do what we say. We own what we do. We WOW our customers.

Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, serving millions of customers daily across 180 markets. Focused on delivering Smarter Technology for All, Lenovo offers a comprehensive portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (servers, storage, edge computing, high-performance computing, software-defined infrastructure), software, solutions, and services. Our ongoing innovation aims to build a more equitable, trustworthy, and smarter future for everyone, everywhere. Listed on the Hong Kong stock exchange (HKSE: 992, ADR: LNVGY), Lenovo continues to invest in world-changing technology.

To learn more, visit www.lenovo.com and explore our latest news on StoryHub.

You Will:

1. Serve as the first point of contact for all security incidents, acting as the primary point of contact (POC).
2. Inform relevant parties listed in the Technical SOP within the expected response timeline regarding incident management.
3. Provide incident details including reference number, description, date/time, impact, and affected parties.
4. Administer, maintain, and assess security processes.
5. Support System Owners in acquiring and maintaining resources for incident response.
6. Coordinate communications between System Owners and incident response teams.
7. Preserve incident information to ensure evidence integrity and admissibility.
8. Ensure compliance with IT security policies.
9. Review logs from all security systems managed by the AFM team.
10. Collaborate with agency managers and technical teams on necessary security actions.
11. Conduct regular policy reviews to ensure alignment with agency requirements.
12. Promote IT security awareness and responsibilities.
13. Participate in incident response drills, tabletop exercises, and simulations as required.

Resolution and Prevention:

1. Identify root causes of security incidents and implement permanent solutions following the Problem Management process.
2. Assist in management, containment, remediation, and eradication of security incidents.
3. Contribute to risk assessments.
4. Close all security incidents in accordance with the Incident Management process.
5. Prepare incident reports within specified timelines: draft within 1 day, final within 3 days post-resolution.
6. Ensure incident reports are verified and accepted by the designated authority before closing records.

He/She will also participate in audit activities including IT Security Review, Vulnerability Assessment, Penetration Testing, and Compliance Review.

You Bring:

• Minimum 5 years of experience in Cyber Security Management.
• Hands-on experience with vulnerability management tools such as Tenable SC+, Nessus, DLP, Insider Security, and Splunk.
• Certifications: CISSP, CISM, or CISA.
• Preferred certifications include PMP, CEH, or other professional security credentials.

Preferred Skills:

• Identity Management
• Knowledge of the Federal Information Security Management Act (FISMA)

#LPS

Additional Locations: Singapore - Central Singapore

If you require accommodations to complete this application, please contact contactability@lenovo.com.