Engineer, Information Security

About Lowe s Lowe s is a FORTUNE 100 home improvement company serving approximately 16 million customer transactions a week in the United States With total fiscal year 2024 sales of more than 83 billion Lowe s operates over 1 700 home improvement stores and employs approximately 300 000 associates Based in Mooresville N C Lowe s supports the communities it serves through programs focused on creating safe affordable housing improving community spaces helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need For more information visit Job Summary The primary purpose of this role is to translate business requirements and functional specifications into logical program designs and to deliver code modules stable application systems and software solutions This includes developing configuring or modifying complex integrated business and or enterprise application solutions within various computing environments This role facilitates the implementation and maintenance of complex business and enterprise software solutions to ensure successful deployment of released applications Roles Responsibilities Core Responsibilities Leads the implementation and maintenance of assigned information security solutions to ensure successful deployment and operation develops and documents detailed standards e g guidelines processes procedures Assists the Information Security team in monitoring security systems reviewing logs and managing information security systems Conducts regular security vulnerability assessments and provides exception reporting and remediation plans to leadership Designs and performs internal and external penetration validation testing to ensure that computer systems are up to date relative to all operating systems patches and virus protection software Collaborates with other technology teams including Engineering to design and implement remediation solutions Identifies reports and provides assistance during information security incidents as part of an Incident Response Team reviews and responds to security alerts to investigate malicious activity Supports evaluation of new security technologies that address both current and future needs based on emerging threats and industry trends Keeps up to date with exploits relevant to the retail sales environment Solves complex architecture design and business problems solutions are extensible works to simplify optimize remove bottlenecks etc Provides mentoring and guidance to more junior level engineers may provide feedback and direction on specific engineering tasks Responds to escalated security issues for enterprise systems facilitates advanced diagnosis and troubleshooting when necessary Participates in the implementation of hardware and software changes into environments to ensure security requirements are met Provides input into security breach response procedures helps lead security breach response activities Leads break fix activities escalating problems to senior management and or vendors as appropriate Analyzes the output of industry standard cybersecurity tools and identifies remediations to reduce risk and exposure of applications Completes custom enhancements of applications using secure coding techniques to reduce the threat of remote or local vulnerabilities Evaluates entire applications Container Infrastructure host platform to identify potential threats and vulnerabilities Years of Experience 2-5 years of experience in software development or a related field 2 years of experience in database technologies 2 years of experience working on project s involving the implementation of solutions applying development life cycles SDLC 2 years of IT experience developing and implementing business systems within an organization 2 years of experience working with defect or incident tracking software 2 years of experience writing technical documentation in a software development environment 2 years of experience working with an IT Infrastructure Library ITIL framework 2 years of experience working with source code control systems 2 years of experience in systems analysis including defining technical requirements and performing high level design for complex solution Experience working with Continuous Integration Continuous Deployment tools Education Qualification Certifications Required Minimum Qualifications Bachelor s Degree in Computer Science CIS Engineering Cybersecurity or related field or equivalent work experience in a related field 2-5 years of experience in software development or a related field 2 years of experience in database technologies 2 years of experience working on project s involving the implementation of solutions applying development life cycles SDLC 2 years of IT experience developing and implementing business systems within an organization 2 years of experience working with defect or incident tracking software 2 years of experience writing technical documentation in a software development environment 2 years of experience working with source code control systems 2 years of experience working with an IT Infrastructure Library ITIL framework 2 Years in experience with information security applications and systems Experience developing cloud native applications with polyglot architecture Experience working with Continuous Integration Continuous Deployment tools Skill Set Required Primary Skills must have Strong experience with Golang Spring Spring Boot Spring MVC Spring Data and Spring Security Experience in React JS and NodeJS frameworks Experience working with DB like PostgreSQL Mongo Casandra etc Experience building REST and SOAP web services using Java Experience with Web Services JSON REST JAX-RS Spring based REST services Experience with Java and J2EE Java EE including servlets JSP JSF JDBC Strong understanding of Java concurrency concurrency patterns experience building thread safe code Java JEE SpringBoot RDBMS and NoSQL DBs Microservices Google Cloud CI CD Secondary Skills desired Experience with messaging products like RabbitMQ Kafka or ActiveMQ Experience with development tools like Eclipse Git Gradle Sonar Jenkins Jira Artifactory etc Experience with web application servers like Tomcat Jetty JBoss etc Experience with TDD code testability standards JUnit Mockito Strong understanding of OOP design patterns and industry best practices Agile project experience Lowe s is an equal opportunity employer and administers all personnel practices without regard to race color religious creed sex gender age ancestry national origin mental or physical disability or medical condition sexual orientation gender identity or expression marital status military or veteran status genetic information or any other category protected under federal state or local law