Sr Analyst, Information Security (Penetration Testing & Red Team Assessments)

Posted 5 Days Ago
Be an Early Applicant
Charlotte, NC
Hybrid
Senior level
Consumer Web • eCommerce • Information Technology • Retail • Software • Analytics • App development
Curiosity wanted. Innovation required.​​​​​​​
The Role
As a Senior Analyst in Offensive Security, the role involves conducting penetration tests and red team assessments, analyzing security vulnerabilities, providing recommendations for remediation, and collaborating with various teams. The analyst will also develop testing methodologies, lead the implementation of new services, and contribute to security policies.
Summary Generated by Built In

Your Impact
As a Senior Analyst, Offensive Security, you will conduct advanced penetration tests and red team assessments across our applications, networks and systems. You will collaborate with cross-functional teams to analyze security vulnerabilities and provide actionable recommendations for remediation.
This role solves complex problems while creating and optimizing processes and often takes a lead role in implementing new services and technologies.
What you will do

  • Conduct red team assessments
  • Design, implement and maintain C2 infrastructure to simulate APT
  • Develop and refine testing methodologies, ensuring they align with industry best practices
  • Analyze findings and present results and recommendations to both technical and non-technical audiences
  • Foster a culture of knowledge sharing and continuous improvement within the team.
  • Be motivated to stay current on the latest attack vectors, and security trends
  • Contribute to security policies and incident response plans based on assessment findings


Qualifications:
Minimum Qualifications • Bachelor's Degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field (or equivalent work or military experience in a related field)
• 4 years of experience in information security
• Intermediate understanding of fundamental security and network concepts (Windows and Unix security: OS lockdown; logging and monitoring; application security; user access; perimeter protection principles, network communication rules; intrusion detection and analysis methods; etc.)
Preferred Qualifications
• 6+ years of experience in red teaming exercises
• In-depth knowledge of network security, exploitation techniques, and understand of advanced persistent threats (APTs )
• Technical knowledge or experience developing using Python, or Perl, and compiled languages such as C, C++, C#, or Java
• Advanced experience with C2 infrastructure models. This includes setup and maintenance of C2 infrastructures. As well as OPSEC and EDR evasion techniques
• Experience conducting ADCS assessments
• Knowledge of attack vectors and mitigation techniques
• Excellent analytical, problem-solving, and communication skills
• Relevant information security certifications (e.g., OSCP, OSCE, GPEN, CRTP, CRTO)• IT experience in the retail industry• Technical knowledge of Microsoft and Google cloud platforms, to include knowledge of all feature sets applicable to security event detection and monitoring (specific to Security Operations Center role)• Previous experience working in a Security Operations Center (SOC) environment• Experience with malware analysis• Intermediate knowledge of threat intelligence, threat hunting, attack surface management and investigations support functions• Highly experienced in the understanding of the output from cybersecurity scanning technologies to include operating systems, Custom Code, Web-based vulnerability analysis, 3rd party installed and hosted applications, cloud-hosted compute platforms, and microservices• Demonstrated understanding of internal security controls, assess risks and identify opportunities for improvement• Highly experienced with information security concepts related to Threat and Vulnerability Management, system architecture and Internet technology• Expertise in Vulnerabilities (OS, application, custom code, configuration, etc.) and associated risks
Where You'll Be;

  • Associates are required to relocate to the Charlotte region to foster collaboration and facilitate improved testing and support.
  • Lowe's supports a Flex Office concept where in-person work is required two days per week at the Charlotte Tech Hub
  • Most business meetings are planned around the Eastern time zone.


About Lowe's
Lowe's Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2023 sales of more than $86 billion, Lowe's operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe's supports the communities it serves through programs focused on creating safe, affordable housing and helping to develop the next generation of skilled trade experts. For more information, visit Lowes.com.
Lowe's is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.

Top Skills

C
C#
C++
Java
Perl
Python

What the Team is Saying

Seemantini Godbole
Vivek B.
Laura M.
Hannah W.
Margot F.
Morgan S.
Elaina W.
The Company
HQ: Mooresville, NC
300,000 Employees
Hybrid Workplace
Year Founded: 1921

What We Do

It’s curious to think of innovation and stability co-existing. But we pair a 100-year track record of success with a hunger to do things differently. Everyone is in the work — tackling complex problems where your impact can build back or build up the communities we serve.

We fill our halls with curious minds from all walks of life. Our differences make us stronger, which is why our leaders build cultures of recognition and inclusion. You are heard, and your curiosities are celebrated and championed here.

Why Work With Us

We have built a space where the curious can move freely. Up in title, up in skills, to the side with teams, or back to try something completely new. We help you find your path — because when you win, we all win.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

Lowe’s Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

Typical time on-site: 2 days a week
Company Office Image
HQMooresville, NC
Company Office Image
Charlotte, NC
Company Office Image
Kirkland, WA
Learn more

Similar Jobs

Lowe’s Logo Lowe’s

Lead Analyst, Information Security (Incident Response Team)

Consumer Web • eCommerce • Information Technology • Retail • Software • Analytics • App development
Hybrid
Mooresville, NC, USA
300000 Employees

Lowe’s Logo Lowe’s

Sr. Technical Engineer, Information Security (Data Security & Encryption)

Consumer Web • eCommerce • Information Technology • Retail • Software • Analytics • App development
Hybrid
Charlotte, NC, USA
300000 Employees

Lowe’s Logo Lowe’s

Sr Engineer, Information Security - (Privilege Access Management)

Consumer Web • eCommerce • Information Technology • Retail • Software • Analytics • App development
Hybrid
Charlotte, NC, USA
300000 Employees

Lowe’s Logo Lowe’s

Engineer, Information Security (Privilege Access Management )

Consumer Web • eCommerce • Information Technology • Retail • Software • Analytics • App development
Hybrid
Charlotte, NC, USA
300000 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account