Lead Engineer Information Security

• Drives the strategic design implementation and optimization of enterprise network security platforms including firewalls microsegmentation technologies and IoT security solutions
• Serves as a technical expert for project teams implementing and maintaining network security controls; defines and oversees documentation of standards such as firewall rule governance segmentation policies and network access controls
• Leads the design and enforcement of network segmentation strategies including zero trust architectures and microsegmentation frameworks across data center cloud and IoT environments
• Engineers and maintains firewall policies rule lifecycle management processes and traffic inspection capabilities to ensure secure and efficient network operations
• Provides guidance on securing IoT and OT environments including device profiling network isolation and threat detection strategies
• Educates engineering and development teams on network security standards segmentation models and secure network design principles
• Resolves complex network security issues spanning multiple environments including on-premises cloud and hybrid infrastructures
• Identifies reports and leads response activities for network-related security incidents including traffic analysis intrusion detection and containment strategies
• Evaluates and integrates new network security technologies to address evolving threats including advancements in firewall capabilities zero trust networking and IoT security platforms
• Maintains awareness of emerging threats exploits and attack techniques targeting network infrastructure and connected devices
• Collaborates across teams to design scalable resilient and secure network architectures that minimize attack surfaces and enforce least-privilege access
• Mentors and advises engineers on network security engineering practices tools and operational processes
• Provides recommendations to business and technology leadership on network security strategy architecture and investment priorities
• Responds to escalated network security issues performing advanced troubleshooting and root cause analysis
• Supports incident response efforts related to network security breaches including firewall events lateral movement and unauthorized network access
• Oversees break/fix activities for network security platforms coordinating with vendors and internal teams as needed
• Analyzes outputs from network security tools such as firewalls IDS/IPS network detection and response (NDR) and microsegmentation platforms to identify risks and drive remediation
• Evaluates network architectures and traffic flows to identify vulnerabilities and enforce segmentation and access control improvements
• Designs and implements secure network configurations and automation to reduce misconfigurations and improve policy consistency
• Develops and enhances automation and scripting for firewall policy management segmentation enforcement and network security monitoring
• Assesses complex network environments including cloud and container networking to identify weaknesses and implement segmentation and security controls

• Bachelor's degree Computer Science CIS Engineering Cybersecurity or related field or equivalent years of experience in lieu of education requirement if applicable
• 7 years Experience in technology system support software development or a related field
• 5 years Experience with information security applications and systems
• 4 years Experience evaluating complex application and hosting environments to identify potential weaknesses and provide remediation plans to reduce risk
• 5 years Experiencing designing complex application and infrastructure systems

• Master's degree Computer Science CIS Business Administration or related field
• 6 years Experience working on project(s) involving the implementation of solutions applying development life cycles (SDLC)
• 3 years DevOps experience
• 1 year Experience with Cloud technologies
• 4 years Experience designing application pipelines with secure configuration parameters to remove or reduce known threat vectors
• 5 years Experience working with diverse application and infrastructure environments to identify and provide technical guidance on threat reduction at both the application and supporting infrastructure layer
• 6 years IT experience developing and implementing business systems within an organization
• 6 years Experience working with defect or incident tracking software
• 6 years Experience writing technical documentation in a software development environment
• 4 years Experience working with an IT Infrastructure Library (ITIL) framework
• 4 years Experience leading teams with or without direct reports
• 6 years Experience working with source code control systems
• Experience working with Continuous Integration/ Continuous Deployment tools
• PCI ISA
• CRISC
• OSCP
• GPen

• 401k with up to 4.25% match
• Bi-annual Cash Bonus
• Discounted Employee Stock Purchase Plan (15% discount of strike price)
• Tuition-Free Education
• 10-week Maternity/Parental Leave
• 10% Associate Discount

• For information about our benefit programs and eligibility please visit https://talent.lowes.com/us/en/benefits .

What We Do

It’s curious to think of innovation and stability co-existing. But we pair a 100-year track record of success with a hunger to do things differently. Everyone is in the work — tackling complex problems where your impact can build back or build up the communities we serve. We fill our halls with curious minds from all walks of life. Our differences make us stronger which is why our leaders build cultures of recognition and inclusion. You are heard and your curiosities are celebrated and championed here.

Why Work With Us

We have built a space where the curious can move freely. Up in title up in skills to the side with teams or back to try something completely new. We help you find your path — because when you win we all win.

Gallery