Lenovo
Global Security Governance & Assurance Director
Lenovo, Morrisville, North Carolina, United States, 27560
Global Security Governance & Assurance Director
Join to apply for the
Global Security Governance & Assurance Director
role at
Lenovo Global Security Governance & Assurance Director
Join to apply for the
Global Security Governance & Assurance Director
role at
Lenovo Get AI-powered advice on this job and more exclusive features. We are Lenovo. We do what we say. We own what we do. We WOW our customers.
Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY).
This transformation together with Lenovo’s world-changing innovation is building a more inclusive, trustworthy, and smarter future for everyone, everywhere. To find out more visit www.lenovo.com, and read about the latest news via our StoryHub.
Key Responsibilities
Enterprise Security Governance
Design and lead the integrated governance framework spanning all security domains: cyber, physical, product and services security, supply chain security, and data protection. Ensure governance frameworks and policy structures are synchronized with AI governance principles and emerging technology oversight led by the Director of AI Governance. Oversee the lifecycle of enterprise security policies, standards, and procedures, ensuring consistency and alignment across diverse security functions and geographies. Chair or support cross-functional governance forums to drive policy decisions, risk escalations, and investment prioritization.
Security Risk Management ERM Ownership
Serve as the primary ERM authority under the CSO/CAIO, responsible for maintaining the security enterprise’s risk register and aligning with corporate ERM processes. Lead quarterly risk reviews and executive-level reporting across all security domains. Collaborate with domain risk owners (AI, cyber, physical, product, and supply chain) to assess, document, and mitigate enterprise-level risks. Provide independent oversight and validation of security controls, resilience planning, and compliance frameworks. Coordinate with internal audit, legal, and corporate risk teams to ensure integration of security risks into the broader enterprise risk posture.
Security Assurance Compliance
Develop and manage assurance programs that evaluate effectiveness of controls, operational readiness, and continuous improvement across all security functions. Partner with internal teams to ensure security compliance with regulatory requirements, industry standards, and customer commitments. Collaborate with the AI Governance function to ensure assurance activities reflect the evolving expectations for AI security, transparency, and responsible innovation. Lead readiness assessments and post-incident validations, including red team exercises, audits, and executive simulations.
Business Alignment Enablement
Act as a strategic advisor to business leaders, helping balance innovation and agility with security governance obligations. Embed governance and assurance into the design and rollout of new products, services, business models, and operational capabilities. Ensure policy and assurance mechanisms support secure and ethical use of AI and emerging technologies.
Team Program Leadership
Build and manage a high-performing governance and assurance team with expertise across multiple domains. Foster a culture of ownership, transparency, and continuous improvement in governance and risk management practices.
Basic Qualifications
Bachelor’s degree in Information Security, Risk Management, Engineering, Business, or a related field; Master’s degree or industry certifications (e.g., CISA, CRISC, CISSP, ISO Lead Auditor) preferred. 15+ years of leadership experience in enterprise security governance, assurance, or risk management, ideally spanning multiple security disciplines.
Preferred Qualifications
Proven track record of establishing integrated governance and assurance programs across cybersecurity, physical security, and supply chain or product security. Strong knowledge of global regulatory frameworks (e.g., SOX, GDPR, NIST, ISO, PCI) and risk assessment methodologies. Exceptional executive communication skills, with the ability to influence across business, technical, and regulatory stakeholders. Experience in a converged security environment where security programs are managed in a unified governance model. Familiarity with AI governance, data protection strategy, or zero-trust assurance programs. Demonstrated success partnering with adjacent governance functions (e.g., AI, Privacy, Data Ethics) to build cohesive oversight models. Comfortable leading in a matrixed, global organization with cross-cultural and cross-functional stakeholders.
The base salary budgeted range for this position is $190k-230K. Individuals may also be considered for bonus and/or commission.
Lenovo’s various benefits can be found onwww.lenovobenefits.com.
In compliance with Colorado's EPEWA, the expected application deadline for this position is November 2, 2025. This applies to both external and internal candidates.
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, national origin, status as a veteran, and basis of disability or any federal, state, or local protected class.
Seniority level
Seniority level Director Employment type
Employment type Full-time Job function
Job function Other Industries IT Services and IT Consulting Referrals increase your chances of interviewing at Lenovo by 2x Sign in to set job alerts for “Director of Assurance” roles.
Manager, Security Risk & Assurance Programs
Morrisville, NC $100,000.00-$115,000.00 13 hours ago Morrisville, NC $90,000.00-$110,000.00 13 hours ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Join to apply for the
Global Security Governance & Assurance Director
role at
Lenovo Global Security Governance & Assurance Director
Join to apply for the
Global Security Governance & Assurance Director
role at
Lenovo Get AI-powered advice on this job and more exclusive features. We are Lenovo. We do what we say. We own what we do. We WOW our customers.
Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY).
This transformation together with Lenovo’s world-changing innovation is building a more inclusive, trustworthy, and smarter future for everyone, everywhere. To find out more visit www.lenovo.com, and read about the latest news via our StoryHub.
Key Responsibilities
Enterprise Security Governance
Design and lead the integrated governance framework spanning all security domains: cyber, physical, product and services security, supply chain security, and data protection. Ensure governance frameworks and policy structures are synchronized with AI governance principles and emerging technology oversight led by the Director of AI Governance. Oversee the lifecycle of enterprise security policies, standards, and procedures, ensuring consistency and alignment across diverse security functions and geographies. Chair or support cross-functional governance forums to drive policy decisions, risk escalations, and investment prioritization.
Security Risk Management ERM Ownership
Serve as the primary ERM authority under the CSO/CAIO, responsible for maintaining the security enterprise’s risk register and aligning with corporate ERM processes. Lead quarterly risk reviews and executive-level reporting across all security domains. Collaborate with domain risk owners (AI, cyber, physical, product, and supply chain) to assess, document, and mitigate enterprise-level risks. Provide independent oversight and validation of security controls, resilience planning, and compliance frameworks. Coordinate with internal audit, legal, and corporate risk teams to ensure integration of security risks into the broader enterprise risk posture.
Security Assurance Compliance
Develop and manage assurance programs that evaluate effectiveness of controls, operational readiness, and continuous improvement across all security functions. Partner with internal teams to ensure security compliance with regulatory requirements, industry standards, and customer commitments. Collaborate with the AI Governance function to ensure assurance activities reflect the evolving expectations for AI security, transparency, and responsible innovation. Lead readiness assessments and post-incident validations, including red team exercises, audits, and executive simulations.
Business Alignment Enablement
Act as a strategic advisor to business leaders, helping balance innovation and agility with security governance obligations. Embed governance and assurance into the design and rollout of new products, services, business models, and operational capabilities. Ensure policy and assurance mechanisms support secure and ethical use of AI and emerging technologies.
Team Program Leadership
Build and manage a high-performing governance and assurance team with expertise across multiple domains. Foster a culture of ownership, transparency, and continuous improvement in governance and risk management practices.
Basic Qualifications
Bachelor’s degree in Information Security, Risk Management, Engineering, Business, or a related field; Master’s degree or industry certifications (e.g., CISA, CRISC, CISSP, ISO Lead Auditor) preferred. 15+ years of leadership experience in enterprise security governance, assurance, or risk management, ideally spanning multiple security disciplines.
Preferred Qualifications
Proven track record of establishing integrated governance and assurance programs across cybersecurity, physical security, and supply chain or product security. Strong knowledge of global regulatory frameworks (e.g., SOX, GDPR, NIST, ISO, PCI) and risk assessment methodologies. Exceptional executive communication skills, with the ability to influence across business, technical, and regulatory stakeholders. Experience in a converged security environment where security programs are managed in a unified governance model. Familiarity with AI governance, data protection strategy, or zero-trust assurance programs. Demonstrated success partnering with adjacent governance functions (e.g., AI, Privacy, Data Ethics) to build cohesive oversight models. Comfortable leading in a matrixed, global organization with cross-cultural and cross-functional stakeholders.
The base salary budgeted range for this position is $190k-230K. Individuals may also be considered for bonus and/or commission.
Lenovo’s various benefits can be found onwww.lenovobenefits.com.
In compliance with Colorado's EPEWA, the expected application deadline for this position is November 2, 2025. This applies to both external and internal candidates.
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, national origin, status as a veteran, and basis of disability or any federal, state, or local protected class.
Seniority level
Seniority level Director Employment type
Employment type Full-time Job function
Job function Other Industries IT Services and IT Consulting Referrals increase your chances of interviewing at Lenovo by 2x Sign in to set job alerts for “Director of Assurance” roles.
Manager, Security Risk & Assurance Programs
Morrisville, NC $100,000.00-$115,000.00 13 hours ago Morrisville, NC $90,000.00-$110,000.00 13 hours ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr