Lead Analyst, Information Security - Cyber Defense Professionals

Job Expired

Full Job Description

Job Summary:
The primary purpose of this role is to lead the development and ongoing delivery of information security tools and processes. This includes responsibility for creating, executing and improving processes and procedures while also providing thought leadership and guidance to the rest of the team.

Responsibilities Include but not limited to:

Supporting SOC Tier III Functions
Threat Hunting & Strategic Intelligence
Computer Forensics

This role addresses complex and interdependent issues that span technologies, business units and services, and drives continuous enhancement to tools and processes. The individual in this role has an expert understanding of all tools and processes supported by the team, including the various integration points with other parts of Technology. He/she works with a high level of independence and autonomy and provides regular coaching and direction to more junior level associates on the team.

With a focus specifically on Identity & Access Management, this role this role focuses on delivering timely, accurate, and controlled system access for the Lowe’s global workforce. This includes creating and maintaining processes, tools, controls and governance mechanisms such as roles, reports, metrics and issue resolution services

With a focus specifically on the Security Operations Center (SOC), this role supports Tier III functions within a 24×7 SOC environment, leading the implementation of new processes and focusing mostly on highly complex security issues. This includes activities aimed at detecting and assessing cyber security events and incidents across the Lowe’s environment.

With a focus specifically on Security Threat & Vulnerability, this role leads and drives execution of processes focused on vulnerability identification or remediation. This includes information security and risk activities such as oversight of vulnerability assessments and remediation programs serving both internal and external stakeholders.

Key Responsibilities:

Analyzes data to detect trends, make recommendations, and provide reporting, defines reporting requirements for standard reports
Leads activities to assess adherence to the information security processes supported
Answers questions from associates about the information security processes supported; handles more complex questions/issues elevated from other analysts on the team
Designs and facilitates process optimization initiatives
Serves as an escalation point and mentor for junior staff for the most complex support problems
Maintains process documentation repositories; ensures information is compiled in an thorough and organized manner
Leads efforts to develop standard operating procedures; identifies and incorporates improvements on procedures based on best practices and industry trends
Collaborates with management to determine information security metrics and leads the collection of information security metric
Maintains an awareness of information security news and trends
Consolidates security related findings, tracks KPIs, and presents results to information security and business leaders and/or vendors
Researches current technologies to assist in the development of new capabilities and recommends solution options
Translates and documents business needs into technical requirements and solutions
Advises users and team members on execution of complex processes, interprets standards and regulations and assists with solutions
Creates and optimizes frameworks and tools and leads assessments of applications and businesses processes to help Lowe’s integrate security services
Provides direction, coaching and training to more junior level analysts to ensure that they have the knowledge and tools needed and to assist them with complex task
Mentors and advises others, sharing an in-depth understanding of company and industry methodologies, policies, standards, and controls
Facilitates cross-functional (security, technology, business) teams to solve complex problems
Provides insight and consultation to help ensure new and existing security solutions are developed with insight into industry best practices, strategies, and architectures
Makes recommendations for process or technology changes
Develops tools or processes to operationalize / improve workflows
Partners with senior key stakeholders to develop and/or update Information Security documents such as policies, standards, procedures, training

Minimum Qualifications:

Bachelor’s degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field
6 years of experience in information security
Advanced understanding of fundamental security and network concepts (Windows and Unix security: OS lockdown; logging and monitoring; application security; user access; perimeter protection principles, network communication rules; intrusion detection and analysis methods; etc.)

Preferred Qualifications:

IT experience in the retail industry
Relevant information security certifications (e.g., GNFA, GCFA, GCFE,CISSP, CISM, CEH, PCI ISA, CRISC, CISA, OSCP, GPen)

A defined track record of Identifying and monitoring the Tactics, Techniques, and Procedures (TTPs) employed by cyber threat actors
Perform intelligence analysis using analytical tradecraft methods such as F3ead
History of published intelligence reporting focused on hacktivist or APT campaigns
Proven track record of developing and reporting threat hunting hypothesis based on applicable security threats to the organization
SME on security incident forensics (host, network and preferably cloud environments) and malware analysis and reverse engineering.

About Lowe’s:
Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 19 million customer transactions a week in the United States and Canada. With fiscal year 2021 sales of over $96 billion, Lowe’s and its related businesses operate or service nearly 2,200 home improvement and hardware stores and employ over 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing and helping to develop the next generation of skilled trade experts. For more information, visit Lowes.com.

EEO Statement

Lowe’s is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.