Engineer, Information Security

About Lowe’s Lowe’s is a FORTUNE® 100 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2024 sales of more than $83 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit Lowes.com.

Lowe’s India, the Global Capability Center of Lowe’s Companies Inc., is a hub for driving our technology, business, analytics, and shared services strategy. Based in Bengaluru with over 4,500 associates, it powers innovations across omnichannel retail, AI/ML, enterprise architecture, supply chain, and customer experience. From supporting and launching homegrown solutions to fostering innovation through its Catalyze platform, Lowe’s India plays a pivotal role in transforming home improvement retail while upholding strong commitment to social impact and sustainability. For more information, visit Lowes India.
Job Summary

The primary purpose of this role is to support the design, implementation and ongoing operations of information security tools and services. This includes translating business and technical requirements into robust enterprise security software solutions that ensure information assets are adequately protected with acceptable levels of control. This also includes monitoring, testing, and evaluating security assessments of systems and taking steps to help design and implement remediation solutions.

To be successful, the individual in this role must have knowledge of security practices and tools related to identity and access management along with enterprise digital certificate management systems. This role helps establish and maintain programs that enable the business to operate efficiently and remain in compliance with regulatory and industry best practices.

Key Responsibilities

• Develop and maintain automation scripts using Python and other scripting languages (Shell/Bash/PowerShell).

• Support the design, enhancement, and maintenance of CI/CD pipelines using Jenkins.

• Implement automation aligned with cloud security, IAM, and identity governance best practices.

• Collaborate with Cloud, DevOps, and Security teams to integrate automation into cloud workflows.

• Troubleshoot script failures, pipeline issues, and cloud automation inconsistencies.

• Maintain documentation for automation processes, pipelines, governance workflows, and cloud integrations.

• Contribute to expanding automation and identity governance coverage across environments.

• Experience in Git and Terraform.

• Candidates holding the Google Professional Cloud Security Engineer certification will be preferred.

Required Qualifications

• Bachelor’s degree Computer Science, CIS, Engineering, Cybersecurity, or related field or equivalent years of experience in lieu of education requirement, if applicable

• 1 Year Experience with information security applications and systems

Preferred Qualifications

• Master’s degree Computer Science, CIS, Business Administration, or related field

• 2 Years Experience analyzing the output of industry standard cybersecurity tools and identifying remediations to reduce risk and exposure of applications

• 1 Year Experience working on project(s) involving the implementation of solutions applying development life cycles (SDLC)

• 2 Years IT experience developing and implementing business systems within an organization

• 2 Years Experience working with defect or incident tracking software

• 2 Years Experience with technical documentation in a software development environment

• 2 Years Experience working with an IT Infrastructure Library (ITIL) framework

• 2 Years Experience leading teams, with or without direct reports

• Experience with Cloud technologies

• Relevant information security certifications (e.g., CISSP, CISM, CEH, PCI ISA, CRISC, CISA, OSCP, GPen)

Preferred Certifications:

• Microsoft Certified: Identity and Access Administrator Associate (SC-300)

• Microsoft Azure Fundamentals (AZ-900)

• GCP associate cloud Engineer

• Oracle Cloud Infrastructure 2024 Certified Foundations Associate certification

What You Will Do

• Designs, builds, and maintains advanced cybersecurity platforms utilizing scripting methodologies and occasional custom code development to ensure robust and resilient security infrastructure

• Supports the implementation and maintenance of assigned information security solutions to ensure successful deployment and operation; develops and documents detailed standards (e.g., guidelines, processes, procedures)

• Assists the Information Security team in monitoring security systems, reviewing logs, and managing information security systems

• Participates in regular security vulnerability assessments

• Collaborates with other technology teams including Engineering to design and implement remediation solutions

• Provides assistance during information security incidents as part of an Incident Response Team

• Remains aware of technological trends and developments in the area of information security

• Solves difficult technical problems; solutions are testable, maintainable, and efficient

• Provides support in the event of escalated security issues for enterprise systems; helps diagnose, troubleshoot, and resolve issues

• Supports the implementation of hardware and software changes into environments to ensure security requirements are met

• Completes basic custom enhancements of applications using secure coding techniques to reduce the threat of remote or local vulnerabilities

• Evaluates entire applications (Container, Infrastructure, host platform) to identify potential threats and vulnerabilities

Minimum Qualifications

• Bachelor’s degree Computer Science, CIS, Engineering, Cybersecurity, or related field or equivalent years of experience in lieu of education requirement, if applicable

• 2 Years Experience in technology system support, software development or a related field

• 1 Year Experience with information security applications and systems

Preferred Skills/Education

• Master’s degree Computer Science, CIS, Business Administration, or related field

• 2 Years Experience analyzing the output of industry standard cybersecurity tools and identifying remediations to reduce risk and exposure of applications

• 1 Year Experience working on project(s) involving the implementation of solutions applying development life cycles (SDLC)

• 2 Years IT experience developing and implementing business systems within an organization

• 2 Years Experience working with defect or incident tracking software

• 2 Years Experience with technical documentation in a software development environment

• 2 Years Experience working with an IT Infrastructure Library (ITIL) framework

• 2 Years Experience leading teams, with or without direct reports

• Experience with Cloud technologies

• Relevant information security certifications (e.g., CISSP, CISM, CEH, PCI ISA, CRISC, CISA, OSCP, GPen)

Lowe's is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.