Sr Security Analyst, Vulnerability Remediation

Job Summary:

The Sr. Information Security Analyst, Vulnerability Remediation, will be a vital member of Lowe’s Vulnerability Remediation Team. You will provide support and resolution for scanning and vulnerability remediation reporting and facilitate vulnerability mitigation and security activities, including security control configuration and implementation. You will collaborate with Stakeholders and Information Security teams to guide prioritizing vulnerabilities and planning mitigations.

Key Responsibilities:

  • Maintains an understanding of security-related IT controls and various testing methods utilized to discover the effectiveness of those controls
  • Facilitates remediation with customers and provides input on risk
  • Works within a team responsible for verifying and validating security compliance against corporate standards, regulatory and other industry defined policies
  • Performs analysis of design documentation, configuration practices, and operational practices and procedures
  • Provides vulnerability assessments, gap analysis, risk analysis, and coordinates discrete security testing as required for the given platform, application, or environment
  • Identifies opportunities for process improvements and makes recommendations for best practices
  • Provides expertise in the prioritization of vulnerabilities based on data analysis efforts across diverse asset ownership
  • Analyzes complex asset and vulnerability data sets to provide meaningful, actionable metrics and data visualizations
  • Develops standard operating procedures; identifies and suggests possible improvements on procedures
  • Assist with the training and development of more junior level analysts as needed
  • Addresses complex and interdependent issues that span technologies, business units, and security domains such as Threat and Vulnerability Management, security policies, standards, and controls
  • Leads cross-functional teams to solve complex security issues.
  • Conducts technical and functional assessments of complex applications and businesses processes to help identify risk
  • Provides expertise in the prioritization of vulnerabilities based on data analysis efforts across diverse asset ownership
  • Analyzes complex asset and vulnerability data sets to provide meaningful, actionable metrics and data visualizations
  • Partners with senior key stakeholders to develop and/or update Information Security documents such as policies, standards, procedures, training
  • Documents vulnerability analysis and/or assessment findings

Minimum Qualifications:

  • Bachelor’s degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field (or equivalent work experience in a related field)
  • 4 years of experience in information security
  • Intermediate understanding of fundamental security and network concepts (Windows and Unix security: OS lockdown; logging and monitoring; application security; user access; perimeter protection principles, network communication rules; intrusion detection and analysis methods; etc.)

Preferred Qualifications:

  • IT experience in the retail industry
  • Relevant information security certifications (e.g., CISSP, CISM)


About Lowe’s:

Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 20 million customers a week in the United States and Canada. With fiscal year 2020 sales of nearly $90 billion, Lowe’s and its related businesses operate or service more than 2,200 home improvement and hardware stores and employ over 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing and helping to develop the next generation of skilled trade experts. For more information, visit Lowes.com.

About Lowe’s in the Community:
As a FORTUNE® 50 home improvement company, Lowe’s is committed to creating safe, affordable housing and helping to develop the next generation of skilled trade experts through nonprofit partnerships. Across every community we serve, Lowe’s associates donate their time and expertise through the Lowe’s Heroes volunteer program. For the latest news, visit Newsroom.Lowes.com or follow @LowesMedia on Twitter.

Lowe’s is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.

More Information

Apply for this job

Leave your thoughts

Share this job