Senior Manager, Access Controls and Protected Data Governance

Key Responsibilities

• Serve as the control authority for approving or denying access to Protected Data and systems containing Protected Data.
• Ensure all access is limited to Trusted Personnel and Trusted Third-Party Providers in accordance with NSA Article II.D.
• Oversee personnel eligibility validation, including citizenship requirements and screening alignment with Data Security Practices and the Data Security Plan.
• Maintain and enforce role-based access control models aligned to NSA restrictions.
• Review and validate access provisioning, de-provisioning, and privileged access controls.
• Evaluate proposed system, integration, or operational changes for impact to Protected Data access and enforce compliance gating.
• Maintain authoritative records of access decisions, approvals, and supporting evidence for audit and reporting purposes.
• Partner with Integration and Change Governance to ensure no access is granted prior to required approvals.
• Escalate any unauthorized access, policy violations, or eligibility concerns to the Security Officer.

• Deep expertise in access control frameworks, identity governance, and role-based access models.
• Strong understanding of personnel eligibility requirements in regulated environments.
• Ability to interpret regulatory requirements and translate them into enforceable access controls.
• Strong documentation discipline with audit-ready evidence management.
• Experience operating in controlled or restricted data environments.

• Bachelor’s degree in cybersecurity, information systems, or related field required.
• 12+ years of experience in access governance, identity management, or regulated security environments.

• Experience supporting CFIUS, FOCI, or similar regulatory frameworks strongly preferred.

U.S. citizenship required.

May require off-hours engagement during incident investigations or urgent access reviews. Limited travel.

The base salary budgeted range for this position is $150k - 200K. Individuals may also be considered for bonus and/or commission.

Lenovo’s various benefits can be found on

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, national origin, status as a veteran, and basis of disability or any federal, state, or local protected class.

In compliance with Colorado's EPEWA, the expected Final date to receive applications for this position is July 27, 2026. This applies to both external and internal candidates.