×
Register Here to Apply for Jobs or Post Jobs. X

Sr Software Security Architect

Job in Raleigh, Wake County, North Carolina, 27601, USA
Listing for: Lenovo
Full Time position
Listed on 2026-06-18
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, Data Security, Security Manager
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

Overview

This position is for a Senior Software Security Architect in the Security Center of Excellence for PC and Smart Devices business (PCSD). This is an exciting role where you will be working with a global team of development engineers and security professionals – assessing and securing Lenovo applications and devices. You will work with multiple development teams across Lenovo to ensure that secure development practices are followed, as well as working with security champions to review applications that are preinstalled on Lenovo devices.

You will be working alongside some of the best security teams in the industry. The security threat landscape presents a wide range of risks to the solutions offered by Lenovo's PC & SD organization – from the Cloud, to PCs, IoT devices, mobile applications and Augmented and Virtual Reality devices. As a Software Security Architect, you will join Lenovo's Global Security Lab, based in Morrisville, NC, as a member of our product security team.

This team is responsible for ensuring Lenovo's PC & SD diverse product and technology portfolio is designed, developed and delivered securely for our customers.

What You'll Do
  • Help lead a global team of development security champions to assess the security posture of Lenovo developed applications for Windows and Android devices.
  • Conduct security assessments of client applications, both Lenovo developed and 3rd party, using industry-standard tools and techniques to identify vulnerabilities.
  • Risk-ranking of identified threats to prioritize mitigation and remediation activities.
  • Help train members of development teams in secure development best practices.
  • Perform security code reviews of application source code.
  • Participate in software design sessions with development teams, analyzing and assisting in the secure design and architecture of PC application software.
  • Work with software designers, developers, project managers, and testers to review, assist and recommend changes and solutions to address the security of Lenovo- and third party-developed software.
  • Act as a trusted advisor and subject matter expert to product development and engineering teams – provide advice on secure application design, development and validation.
  • Identify and evaluate needed tools and refine processes and procedures to ensure security reviews are performed correctly.
  • Define security requirements for Lenovo and third-party development teams.
  • Stay current in the latest security tools, methodologies, and best practices, especially as it relates to Windows and mobile app development.
  • Act as a Secure Development Lifecycle evangelist, guiding and training development teams within the Personal Computer & Smart Devices group on how to effectively and efficiently apply secure development practices.
Basic Qualifications
  • Bachelor's degree in Computer Science, Computer Engineering, or related field; or relevant cybersecurity experience of 5+ years.
  • 2+ years experience in Computer Security with experience in secure product design, vulnerability management, ethical hacking, and product security testing.
  • 2+ years experience in developing apps for Windows and Android operating systems, using common application programming languages such as C# or Java.
  • Familiarity with general security testing and reverse engineering tools, such as Burp Suite, Kali, ZAP, etc.
Preferred Qualifications
  • Understanding of general secure development practices: code review, static analysis, OWASP, etc.
  • General knowledge of cryptography concepts such as hash functions and symmetric/asymmetric encryption.
  • Knowledge of and experience with applying CWE, CVSS, CVE and OWASP processes and remediation recommendations.
  • An understanding and ability to communicate the techniques, tactics and practices of an attacker.
  • Experience with threat modeling or other risk identification techniques.
  • Experience in reverse engineering, disassemblers, debuggers, and developing exploits is a plus.
  • Detailed knowledge of security vulnerabilities and remediation techniques.
  • Multiple Industry security certifications such as CISSP, CCSP, SANS-GEVA (or other SANS certs), OCSP.
  • Communications skills in Mandarin.

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any federal, state, or local protected class.

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary