This position is for a DevSecOps engineer in the Security Center of Excellence for the Global PC and Smart Devices Business (PCSD). This is an exciting role where you will be working with a global team of development engineers and security professionals. You will work with multiple business units and DevOps teams to implement, configure and administer DevSecOps tools in CI/CD pipelines. You will be working alongside the best security teams in the industry. You’ll be keeping up to date with the latest DevSecOps technology and trends and you’ll have the opportunity to make a big impact on the largest PC company in the world. You should be known for taking initiative to do what needs to be done. You must have excellent organizational skills and you should thrive in a fast-paced environment with multiple partners and projects

As a member on the team, you will be collaborating with team members on your immediate team and other business unit’s DevOps and Development team members. You’ll work closely with other BU’s DevOps teams assisting implementing and maintaining security tools and processes. You’ll be researching and recommending the latest DevSecOps technologies to ensure Lenovo’s CI/CD pipelines remain as secure as possible. You’ll ensure that proper metrics are in place to show improvements in our processes and to identify gaps.

• Implement, Integrate, and Maintain tools with your team and other BUs.
• Identify areas of improvements to our CI/CD pipelines.
• Research and recommend new tools, processes, and techniques.
• Perform cybersecurity control and risk assessments of proposed and existing product and infrastructure architecture for compliance with Lenovo Requirements and international cloud security best practices, recommending technical, administrative and physical remediations and mitigations for identified risks and vulnerabilities
• Develop service security and compliance requirements for SaaS multi-tenant systems
• Design and develop cloud security architectures and perform architecture design reviews

Basic Qualifications:

• Bachelor’s degree in a relevant field or equivalent relevant experience
• 5+ years of cybersecurity experience
• 3+ years of DevSecOps experience

Preferred Qualifications:

• Experience with Wiz, Snyk, Contrast, Coverity, Checkmarx, Fossa, jFrog, Jenkins, Jira, Confluence, and Bitbucket etc..
• Demonstrated experience implementing and configuring SAST, DAST, IAST Fuzzing and RASP tools in a CI/CD pipeline.
• Experience working with developers and as a developer.
• Experience guiding large software projects from design to deployment with security in mind.
• Experience threat modeling software projects.
• Experience implementing and recording appropriate metrics to reflect an accurate picture of progress to management.
• Ability to successfully work across regions and functions to solve problems and get things done
• Technical certifications like: Certified Kubernetes Administrator (CKA), Certified Kubernetes Application Developer (CKAD), and Certified Kubernetes Security Specialist (CKS)
• SANS Certifications such as GIAC Cloud Security and DevSecOps Automation (GCSA), and GIAC Cloud Penetration Tester (GCPN).
• Public Cloud Provider certifications such as AWS Solutions Architect, AWS Certified Security Specialty, Microsoft Certified: Azure Solutions Architect Expert, Microsoft Certified: Azure Security Engineer Associate, and GCP: Professional Cloud Architect.
• In-depth knowledge of public cloud providers, especially AWS.
• Experience with implementing and maintenance with DevSecOps tools.
• Strong written and verbal communications and interpersonal skills