Manager, Data Security Controls and Monitoring

Key Responsibilities

• Implement and validate technical controls protecting Protected Data, including encryption, logging, monitoring, and system hardening.
• Maintain centralized monitoring of systems processing or storing Protected Data to detect unauthorized access or anomalous activity.
• Ensure all access to Protected Data is logged, traceable, and aligned with NSA requirements.
• Produce and maintain audit‑ready technical evidence supporting compliance with the NSA and Data Security Plan.
• Support quarterly and annual reporting requirements, including preparation of access logs and monitoring outputs.
• Validate that systems storing Protected Data remain within Approved Data Storage Locations (NSA Article II.F).
• Support incident detection and response, ensuring Security Incidents are identified and escalated in accordance with NSA reporting timelines (48‑hour requirement).
• Coordinate with Access Controls Governance to ensure monitoring aligns with approved access decisions.
• Support third‑party audits and CMA‑directed reviews by providing technical evidence and system access as required.

• Strong experience with security monitoring, logging pipelines, and detection frameworks.
• Knowledge of NIST, ISO, or comparable control frameworks.
• Experience in regulated environments requiring audit evidence and traceability.
• Strong analytical and documentation skills.

• Bachelor’s degree in cybersecurity, computer science, or related field required.
• 8+ years of experience in security engineering, monitoring, or technical compliance roles.
• Experience supporting audits or regulatory reviews preferred.

U.S. citizenship required.

May require availability during security events or compliance deadlines. Limited travel.

The base salary budgeted range for this position is $100k - $170k. Individuals may also be considered for bonus and/or commission.

Lenovo’s various benefits can be found on

In compliance with Colorado's EPEWA, the expected Final date to receive applications for this position is July 27, 2026. This applies to both external and internal candidates.

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, national origin, status as a veteran, and basis of disability or any federal, state, or local protected class.