-
Global Security Governance & Assurance Director
- Lenovo (Morrisville, NC)
-
Global Security Governance & Assurance Director
General Information
Req #
WD00084892
Career area:
Information Technology
Country/Region:
United States of America
State:
North Carolina
City:
Morrisville
Date:
Thursday, July 24, 2025
Working time:
Full-time
**Additional Locations** :
* United States of America - North Carolina - Morrisville
Why Work at Lenovo
We are Lenovo. We do what we say. We own what we do. We WOW our customers.
Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY).
This transformation together with Lenovo’s world-changing innovation is building a more inclusive, trustworthy, and smarter future for everyone, everywhere. To find out more visit www.lenovo.com , and read about the latest news via ourStoryHub (https://news.lenovo.com/) .
Description and Requirements
Key Responsibilities:
Enterprise Security Governance
+ Design and lead the integrated governance framework spanning all security domains: cyber, physical, product and services security, supply chain security, and data protection.
+ Ensure governance frameworks and policy structures are synchronized with AI governance principles and emerging technology oversight led by the Director of AI Governance.
+ Oversee the lifecycle of enterprise security policies, standards, and procedures, ensuring consistency and alignment across diverse security functions and geographies.
+ Chair or support cross-functional governance forums to drive policy decisions, risk escalations, and investment prioritization.
Security Risk Management & ERM Ownership
+ Serve as the primary ERM authority under the CSO/CAIO, responsible for maintaining the security enterprise’s risk register and aligning with corporate ERM processes.
+ Lead quarterly risk reviews and executive-level reporting across all security domains.
+ Collaborate with domain risk owners (AI, cyber, physical, product, and supply chain) to assess, document, and mitigate enterprise-level risks.
+ Provide independent oversight and validation of security controls, resilience planning, and compliance frameworks.
+ Coordinate with internal audit, legal, and corporate risk teams to ensure integration of security risks into the broader enterprise risk posture.
Security Assurance & Compliance
+ Develop and manage assurance programs that evaluate effectiveness of controls, operational readiness, and continuous improvement across all security functions.
+ Partner with internal teams to ensure security compliance with regulatory requirements, industry standards, and customer commitments.
+ Collaborate with the AI Governance function to ensure assurance activities reflect the evolving expectations for AI security, transparency, and responsible innovation.
+ Lead readiness assessments and post-incident validations, including red team exercises, audits, and executive simulations.
Business Alignment & Enablement
+ Act as a strategic advisor to business leaders, helping balance innovation and agility with security governance obligations.
+ Embed governance and assurance into the design and rollout of new products, services, business models, and operational capabilities.
+ Ensure policy and assurance mechanisms support secure and ethical use of AI and emerging technologies.
Team & Program Leadership
+ Build and manage a high-performing governance and assurance team with expertise across multiple domains.
+ Foster a culture of ownership, transparency, and continuous improvement in governance and risk management practices.
Basic Qualifications:
+ Bachelor’s degree in Information Security, Risk Management, Engineering, Business, or a related field; Master’s degree or industry certifications (e.g., CISA, CRISC, CISSP, ISO Lead Auditor) preferred.
+ 15+ years of leadership experience in enterprise security governance, assurance, or risk management, ideally spanning multiple security disciplines.
+ Proven track record of establishing integrated governance and assurance programs across cybersecurity, physical security, and supply chain or product security.
+ Strong knowledge of global regulatory frameworks (e.g., SOX, GDPR, NIST, ISO, PCI) and risk assessment methodologies.
+ Exceptional executive communication skills, with the ability to influence across business, technical, and regulatory stakeholders.
Preferred Qualifications:
+ Experience in a converged security environment where security programs are managed in a unified governance model.
+ Familiarity with AI governance, data protection strategy, or zero-trust assurance programs.
+ Demonstrated success partnering with adjacent governance functions (e.g., AI, Privacy, Data Ethics) to build cohesive oversight models.
+ Comfortable leading in a matrixed, global organization with cross-cultural and cross-functional stakeholders.
The base salary budgeted range for this position is $190k-230K. Individuals may also be considered for bonus and/or commission.
Lenovo’s various benefits can be found on www.lenovobenefits.com .
In compliance with Colorado's EPEWA, the expected application deadline for this position is November 2, 2025. This applies to both external and internal candidates.
\#LI-JL1
\#LI-REMOTE
_We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, national origin, status as a veteran, and basis of disability or any federal, state, or local protected class._
**Additional Locations** :
* United States of America - North Carolina - Morrisville
* United States of America
* United States of America - North Carolina
* United States of America - North Carolina - Morrisville
-
Recent Searches
- Veterinary Assistant Instructor Part (United States)
- Unix Windows System Admin (United States)
- Employee Services Representative II (Vermont)
- PPM Operator Nppd SHL (United States)
Recent Jobs
-
Global Security Governance & Assurance Director
- Lenovo (Morrisville, NC)