Position Description: About Lenovo Focused on a bold vision to deliver smarter technology for all, we are developing world-changing technologies that create a more inclusive, trustworthy and sustainable digital society. By designing, engineering and building the world’s most complete portfolio of smart devices and infrastructure, we are also leading an Intelligent Transformation – to create better experiences and opportunities for millions of customers around the world. Join us in defining our world of tomorrow and creating smarter technology for all! Who You’ll Work With At Lenovo, we manufacture one of the world’s widest portfolios of connected products, including PCs (ThinkPad, Yoga, Lenovo Legion), tablets, smartphones and workstations as well as augmented and virtual reality (Mirage, ThinkReality) and smart home/officesolutions, software and services. Lenovo’s data center solutions (ThinkSystem, ThinkAgile) are creating the capacity and computing power for the connections that are changing business and society. About Our Team Lenovo’s Infrastructure Solutions Group (ISG; formerly Data Center Group or DCG) is seeking a Product Security Incident Response Team (PSIRT) Vulnerability Manager to support Lenovo ISG’s vulnerability management activities for maintaining a high level of security in the products and services we provide to our customers.  This is a new position within the ISG Product Security Office (PSO) that will integrate with our Corporate PSIRT and work closely with customers and ISG Development teams. The successful candidate will have experience handling security incidents and/or managing vulnerabilities for technology products; be comfortable communicating with customers, development teams, and stakeholders; have a natural curiosity for exploring and understanding reported security issues; and have a solid security knowledge base to draw from.  Knowledge of data center and infrastructure technologies is helpful. What You'll Do • Serve as a primary PSIRT resource for ISG and our customers • Quickly become a Subject Matter Expert that knows ISG products, technologies, and Development Product Security Leads (PSLs) • Monitor, investigate, and respond to customer ISG security reports received by the PSIRT and support PSIRT response to researcher, partner, media, etc. security reports • Perform hands-on investigation to confirm reported security issues or provide remediation guidance • Work with PSIRT, ISG PSO, and ISG PSLs to move issues – whether discovered internally or reported externally - from vulnerability to resolution, ensuring data accuracy and timeliness of updates • Analyze security issues to identify patterns and root causes • Support PSIRT security advisory publication and internal ISG advisory communication #### Position Requirements: • BS in Information Security, Management Information Systems, or related degree • Five-plus (5+) years of experience in one or more areas supporting security incident response, such as application, hardware, or system security, incident handling, vulnerability management, etc. • Experience in vulnerability analysis, investigation, management, and triage • Technical knowledge to support hands-on investigation, such as familiarity with network protocols, Linux, and security tools such Nessus, Nmap, and testssl • Familiarity with best practices and standards for incident response and vulnerability management, such as the FIRST PSIRT Services Framework, ISO/IEC 27035, ISO/IEC 29147, ISO/IEC 30111, and NIST SP800-61 • Team player and a self-starter • Critical thinking, analytical ability, and problem solving • Good verbal and written communication skills • Security certification preferred, such as E|CIH, GCIH, CISSP, or Security+ Why Lenovo? Lenovo is a US$50 billion Fortune Global 500 company, with 57,000 employees and operating in 180 markets around the world. We are #1 PC company on the planet, BCG's 50 most innovative companies, and one of Interbrand’s 100 BEST global brands. Focused on a bold vision to deliver smarter technology for all, we are developing world-changing technologies that create a more inclusive, trustworthy and sustainable digital society. By designing, engineering and building the world’s most complete portfolio of smart devices and infrastructure, we are also leading an Intelligent Transformation – to create better experiences and opportunities for millions of customers around the world. Learn more about why it’s great to work at Lenovo - https://www.lenovobenefits.com/why-join-lenovo We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any federal, state, or local protected class.