Your Impact
"The primary purpose of this role is to support the design, implementation, and ongoing operation of information security tools and services. This includes leading the process of translating business and technical requirements into robust enterprise security software solutions that ensure information assets are adequately protected with acceptable levels of control. This also includes monitoring, testing, and evaluating security assessments of systems and taking steps to design and implement remediation solutions.
To be successful, the individual in this role must have strong knowledge of security practices and tools related to identity and access management along with enterprise digital certificate management systems. This role establishes and maintains programs that enable the business to operate efficiently and remain in compliance with regulatory and industry best practices."
To be successful, the individual in this role must know security practices and tools related to identity and access management along with enterprise digital certificate management systems. This role helps establish and maintain programs that enable the business to operate efficiently and remain in compliance with regulatory and industry best practices."
What will you do;
- Leads the implementation and maintenance of assigned information security solutions to ensure successful deployment and operation; develops and documents detailed standards (e.g., guidelines, processes, procedures)
- • Assists the Information Security team in monitoring security systems, reviewing logs, and managing information security systems
- Conducts regular security vulnerability assessments and provides exception reporting and remediation plans to leadership
- Designs and performs internal and external penetration validation testing to ensure that computer systems are up to date relative to all operating systems, patches, and virus protection software
- Collaborates with other technology teams including Engineering to design and implement remediation solutions
- Identifies, reports, and provides assistance during information security incidents as part of an Incident Response Team; reviews and responds to security alerts to investigate malicious activity
- Supports evaluation of new security technologies that address both current and future needs based on emerging threats and industry trends
- Keeps up to date with exploits relevant to the retail sales environment
- Solves complex architecture/design and business problems; solutions are extensible; works to simplify, optimize, remove bottlenecks, etc.
- Provides mentoring and guidance to more junior-level engineers; may provide feedback and direction on specific engineering tasks
- Responds to escalated security issues for enterprise systems; facilitates advanced diagnosis and troubleshooting when necessary
- Participates in the implementation of hardware and software changes into environments to ensure security requirements are met
- Provides input into security breach response procedures; helps lead security breach response activities
- Leads break/fix activities, escalating problems to senior management and/or vendors as appropriate
- Analyzes the output of industry-standard cybersecurity tools and identifies remediations to reduce risk and exposure of applications
- Completes custom enhancements of applications using secure coding techniques to reduce the threat of remote or local vulnerabilities
- Evaluate entire applications (Container, Infrastructure, host platform) to identify potential threats and vulnerabilities
Required Qualifications
- Bachelor's Degree in Computer Science, CIS, Engineering, Cybersecurity, or related field (or equivalent work experience in a related field)
- 5 years of experience in technology system support, software development, or a related field
- 2 years of experience with information security applications and systems.
Preferred Qualifications
- Master's Degree in Computer Science, CIS, Business Administration, or related field
- 4 Years experience working on project(s) involving the implementation of solutions applying development life cycles (SDLC)
- 1 Year of DevOps experience
- 3 Years of experience evaluating entire applications (Container, Infrastructure, host platform) to identify potential threats and vulnerabilities
- 3 Years of experience in the custom enhancement or development of applications using secure coding techniques to reduce the threat of remote or local vulnerabilities
- Relevant information security certifications (e.g., CISSP, CISM, CEH, PCI ISA, CRISC, CISA, OSCP, GPen)
- Advanced understanding of information security practices and policies
- 5 Years of IT experience developing and implementing business systems within an organization
- 5 Years of experience working with defect or incident-tracking software
- 5 Years of experience writing technical documentation in a software development environment
- 3 Years of experience working with an IT Infrastructure Library (ITIL) framework
- 3 Years of experience leading teams, with or without direct reports
- 5 Years experience working with source code control systems
- Experience working with Continuous Integration/ Continuous Deployment tools
- 5 Years of experience in systems analysis, including defining technical requirements and performing high-level design for complex solutions
- Experience with Cloud technologies
Where You'll Be;
- Associates are required to relocate to the Charlotte region to foster collaboration and facilitate improved testing and support.
- Lowe's supports a Flex Office concept where in-person work is required two days per week at the Charlotte Tech Hub
- Most business meetings are planned around the Eastern time zone
About Lowe's
Lowe's Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2023 sales of more than $86 billion, Lowe's operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe's supports the communities it serves through programs focused on creating safe, affordable housing and helping to develop the next generation of skilled trade experts. For more information, visit Lowes.com.
Lowe's is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.
Pay Range: $92,300.00 - $175,400.00 annually Starting rate of pay may vary based on factors including, but not limited to, position offered, location, education, training, and/or experience. For information regarding our benefit programs and eligibility, please visit https://talent.lowes.com/us/en/benefits.
What We Do
It’s curious to think of innovation and stability co-existing. But we pair a 100-year track record of success with a hunger to do things differently. Everyone is in the work — tackling complex problems where your impact can build back or build up the communities we serve.
We fill our halls with curious minds from all walks of life. Our differences make us stronger, which is why our leaders build cultures of recognition and inclusion. You are heard, and your curiosities are celebrated and championed here.
Why Work With Us
We have built a space where the curious can move freely. Up in title, up in skills, to the side with teams, or back to try something completely new. We help you find your path — because when you win, we all win.
Gallery
Lowe's Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.