JOB DESCRIPTION: Position based in Mooresville, NC, some teleworking may be permitted. Travel to Lowe's offices may be required.
Serve as a technical expert for project teams throughout the implementation and maintenance of assigned information security solutions; defines and oversees the documentation of detailed standards (e.g., guidelines, processes, procedures). Educate others on current architectural standards and guidelines to drive efficiency in the design and implementation of information security solutions. Resolve complex problems spanning multiple applications to drive overall improvements in security across systems and applications.
Assist the Information Security team in monitoring security systems, reviewing logs, and managing information security systems. Analyze system vulnerability scans, penetration tests and risk assessments; works with business units to resolve identified vulnerabilities within established SLAs. Design and leads internal and external penetration validation testing to ensure that computer systems are up to date relative to all operating systems, patches, and virus protection software.
Facilitate effective collaboration with other technology teams including Engineering to design and implement remediation solutions. Identify, report, and lead technical support activities during information security incidents as part of an Incident Response Team; reviews and responds to security alerts to investigate malicious activity. Lead the technical evaluation of new security technologies that address both current and future needs based on emerging threats and industry trends.
Keep up to date with exploits relevant to the retail sales environment; researches possible preventative measures. Solve complex cross-functional architecture/design and business problems; solutions are extensible; works to simplify, optimize, remove bottlenecks, etc. Mentor and advises others, sharing an in-depth understanding of company and industry methodologies, policies, standards, and controls.
Make recommendations to Business and Technology leadership to ensure alignment of infrastructure applications and data with current and future security standards. Respond to escalated security issues for enterprise systems; facilitates advanced diagnosis and troubleshooting when necessary.
JOB REQUIREMENTS: Job requires a Bachelor's Degree in Computer Science, CIS, Engineering or a related field and 7 years of experience in technology system support, software development or a related field.
Must have prior experience in:
6 years of experience working with Project(s) involving the implementation of solutions applying development life cycles (SDLC).
5 years of experience with Information security applications and systems including Next Gen Firewalls (Cisco ASA/FTD, Palo Alto, Fortinet Firewalls), BigIP F5 and Citrix NetScaler Application Delivery Controllers, Websense, Zscaler, Cisco WSA and CWS Proxy, Cisco WLC Lan controllers, Routers and Switch Security, FireEye IDS/IPS. Performed Tenable Nessus Scanning and Vulnerability assessments.
4 years of experience with:
Database technologies leveraging Microsoft SQL and Microsoft Access;
Designing application pipelines with secure configuration parameters to remove or reduce known threat vectors using Jenkins CICD Pipeline leveraging Ansible and Yaml; and
Evaluating complex application and hosting environments to identify potential weaknesses and provide remediation plans to reduce risk.
3 years of experience with DevOps experience.
1 year of experience with Cloud technologies including GCP and AWS.
Qualified applicants should email cvr ltr & resume to: firstname.lastname@example.org. Reference #3337553
Lowe's Companies, Inc.