Information Security Analyst II - ERM - Full-time

The primary purpose of this role is to provide enterprise-wide, risk-based security and continuity capabilities to meet changing internal and external threat landscapes. This includes responsibility for identifying and protecting sensitive information, detecting and responding to cyber threats, and maintaining compliance with regulatory requirements and industry standards. This role is critical to Lowe's as it understands the Enterprise environment and builds policies that help Lowe's to reduce risk.

RESPONSIBILITY STATEMENTS

• Maintains an understanding of security related IT controls and various testing methods utilized to discover the effectiveness of those controls

• Works in a team responsible for verifying and validating security compliance against corporate standards, regulatory and other industry defined policies

• Performs analysis of design specifications, design documentation, configuration practices, and operational practices and procedures

• Provides vulnerability assessments, gap analysis, risk analysis, and coordinates other discrete security testing as required for the given platform, application, or environment, including penetration testing and code and architectural reviews where needed

• Is familiar with networks and data analysis

• Is familiar with IT infrastructure design and documentation

• Is familiar with network and system architectures

• Is familiar with incident response methodologies

REQUIRED EDUCATION/EXPERIENCE:

H.S. Diploma, 6+ years experience, Two or more years experience as a Security Analyst or equivalent. One or more of the following Information Security certifications: CISSP, CISM, CISA, CRISC. Analytical / problem solving skills. Ability to communicate effectively with both technical and non-technical personnel. Knowledge of infrastructure (networks and servers), services and security policies. Ability to work in a team environment

OR Bachelor's Degree in Computer Science or related field, 4 years experience, Two or more years experience as a Security Analyst or equivalent. One or more of the following Information Security certifications: CISSP, CISM, CISA, CRISC. Analytical / problem solving skills. Ability to communicate effectively with both technical and non-technical personnel. Knowledge of infrastructure (networks and servers), services and security policies. Ability to work in a team environment

PREFERRED EDUCATION/EXPERIENCE:

Bachelor's Degree in Computer Science or related field, 4 years "Retail" experience in an Information Technology related area

Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving more than 17 million customers a week in the United States, Canada and Mexico. With fiscal year 2016 sales of $65.0 billion, Lowe’s and its related businesses operate or service more than 2,370 home improvement and hardware stores and employ over 290,000 people. Founded in 1946 and based in Mooresville, N.C., Lowe’s supports the communities it serves through programs that focus on K-12 public education and community improvement projects. For more information, visit Lowes.com.