Sr Analyst, Information Security
1 day ago
About Lowe's
Lowe's is a FORTUNE 100 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2024 sales of more than $83 billion, Lowe's operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe's supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit
Lowe's India, the Global Capability Center of Lowe's Companies Inc., is a hub for driving our technology, business, analytics, and shared services strategy. Based in Bengaluru with over 4,500 associates, it powers innovations across omnichannel retail, AI/ML, enterprise architecture, supply chain, and customer experience. From supporting and launching homegrown solutions to fostering innovation through its Catalyze platform, Lowe's India plays a pivotal role in transforming home improvement retail while upholding strong commitment to social impact and sustainability. For more information, visit Lowes India
Your Impact
As a Senior Analyst, Information Security Compliance, you will play a critical role in safeguarding the enterprise by driving our continuous compliance program. You'll own and elevate key SOX and security compliance processes, leading end-to-end workstreams that enable large-scale IT modernization initiatives supporting the company's most important business and technology strategies. In this role, you won't just follow processes, you'll shape and improve them, influencing the future of security compliance across all domains and platforms. You will manage everything from planning and program execution to control testing, reporting, and remediation oversight, ensuring enterprise-wide impact. You'll also be at the forefront of innovation, contributing to the long-term security strategy by helping design and implement automation for evidence collection, testing, and pre-implementation reviews. Your expertise and leadership will directly strengthen the organization's ability to deliver secure, compliant, and resilient technology solutions at scale.
What You Will Do:
- Works closely with various groups and levels of leadership within Lowe's Tech, including the Executive Leadership Team.
- Collaborate with technical and business teams responsible for major financial system modernization efforts, security vital assets, and PCI scoped assets to determine control design effectiveness regularity impact and help in the design of the relevant SOX controls.
- Conduct IT process walkthroughs to ensure control objectives are met and sufficient coverage is maintained.
- Develop written control workpapers and reports of varied depth on short deadlines, with minimal supervision, at a technical level of detail appropriate to the audience.
- Identify and scope improvement opportunities working to bring improvements to fruition while defining appropriate controls.
- Analyze data to detect trends, make recommendations, and provide reporting
- Provide oversight, direction, and mentoring advice to the Information Security Compliance analysts, sharing an in-depth understanding of company and industry methodologies, policies, standards, and control controls.
- Answers questions from associates about the information security processes supported; handles more complex questions/issues elevated from other analysts on the team.
- Serves as an escalation point and mentor for junior staff.
- Support management in developing robust action plans to address deficiencies and ensure remediation promptly to effectively address issues.
- Support internal team initiatives by delivering quality high-quality technical assessments.
- Provides insight and consultation to help ensure new and existing security solutions are developed with insight into industry best practices, strategies, and architectures.
- Make recommendations for process or technology changes.
- Develop tools or processes to operationalize/improve workflows.
- Creates and optimizes frameworks and tools and leads assessments of applications and businesses processes to help Lowe's integrate security services.
Required Qualifications:
- Bachelor's Degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field (or equivalent work or military experience in a related field).
- 2 years of experience developing Cybersecurity or information assurance policies, standards, awareness training, or 2 years of experience conducting assessments or technical reviews to analyze risk.
- Experience with information security programs, audits, and SOX
- 2 years of experience in information security compliance and controls testing.
- Advanced understanding of fundamental security and network concepts (Windows and Unix security: endpoint security; logging and monitoring; application security; user access; perimeter protection principles, network communication rules; and analysis methods; etc.).
- Self-motivated, reliable, and follows through on commitments.
- Solutions-focused, strong work ethic, and desire to achieve excellence.
- Highly flexible and adaptable within a rapid and changing work environment.
Preferred Qualifications:
- Hands-on expertise in building and deploying automated solutions for evidence collection and control testing, including the use of AI to streamline compliance processes
- IT security compliance experience in the retail industry
- Experience in a PCI/Retail technology environment
- Big 4 internal or external audit experience
- Relevant information security certifications (e.g., CISA, CISSP, PCI-P, ISA, CISM, CEH, CRISC, OSCP, GPen)
- Demonstrated understanding of internal security controls, risk assessment, and identifying opportunities for improvement
- Intermediate knowledge of vulnerability management (OS, application, custom code, configuration, etc.) and associated risks
- Excellent communication and interpersonal skills with success in working across organizations at all levels.
Lowe's is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under state or local law. Lowe's wishes to maintain appropriate standards and integrity in meeting the requirements of the Information Technology Act's privacy provisions.
Lowe's is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.
-
IT- Sr Systems Information Security Analyst
3 days ago
Bengaluru, Karnataka, India Cadence Full timeAt Cadence, we hire and develop leaders and innovators who want to make an impact on the world of technology.Position:Sr. Information Security AnalystGrade:IT3Location:Noida/BangaloreJob DescriptionKey ResponsibilitiesLed and implement security architecture and solutions to safeguard enterprise systems, networks, and data.Conduct vulnerability assessments,...
-
Senior Information Security Analyst
3 days ago
Bengaluru, Karnataka, India Rubrik Security Cloud Full time ₹ 5,00,000 - ₹ 8,00,000 per yearAbout the team:The Information Security (InfoSec) organization advances the overall state of security at Rubrik through critical initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect data and systems with appropriate...
-
Information Security Analyst
1 week ago
Bengaluru, Karnataka, India Bizaccen Knnect Full time ₹ 6,00,000 - ₹ 12,00,000 per yearInformation Security Analyst / SpecialistWe are looking for a detail-oriented Information Security Analyst/Specialist to join our InfoSec team. The ideal candidate will ensure compliance with industry standards, strengthen security operations, manage risks, and collaborate across teams to safeguard our systems and data.ResponsibilitiesInformation Security...
-
Information Security Analyst
6 days ago
Bengaluru, Karnataka, India Gallagher Full time ₹ 12,00,000 - ₹ 36,00,000 per yearPosition SummaryThis information security Analyst will be providing technical assistance in the-coordination of global ISO27001 internal audits. Reporting locally to the India Business Information Security Officer (BISO)this role will liaise with the various global divisions in guiding participants in answering Internal audit questions. This role will work...
-
Information Security Analyst
2 weeks ago
Bengaluru, Karnataka, India Infosys Full time ₹ 15,00,000 - ₹ 25,00,000 per yearAnalyst Information Security12.1. Knowledge of Cloud Security shared responsibility model Knowledge of various cloud environments, cloud security stack and cloud deployment models Evaluate the security offerings related to cloud security and recommend appropriate controls Working experience on Amazon web services, Azure and other related cloud...
-
Information Security Analyst
3 days ago
Bengaluru, Karnataka, India Deutsche Bank Full time ₹ 1,20,000 - ₹ 1,30,000 per yearInformation Security AnalystJob ID: R0399268Full/Part-Time: Full-timeRegular/Temporary: RegularListed: Location: BangalorePosition OverviewJob Title: Information Security AnalystCorporate Title: Senior AnalystLocation: Bangalore, IndiaRole DescriptionThis Role is part of the Identity and Access management & governance team within Deutsche India Pvt.Ltd....
-
Principal Information Security Analyst
3 days ago
Bengaluru, Karnataka, India Skyworks Solutions, Inc. Full time ₹ 12,00,000 - ₹ 36,00,000 per yearIf you are looking for a challenging and exciting career in the world of technology, then look no further. Skyworks is an innovator of high performance analog semiconductors whose solutions are powering the wireless networking revolution. At Skyworks, you will find a fast-paced environment with a strong focus on global collaboration, minimal layers of...
-
Information Security Analyst III
3 days ago
Bengaluru, Karnataka, India netskope software pvt Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob Description About Netskope: Today, there's more data and users outside the enterprise than inside, causing the network perimeter as we know it to dissolve. We realized a new perimeter was needed, one that is built in the cloud and follows and protects data wherever it goes, so we started Netskope to redefine Cloud, Network and Data Security. Since...
-
Information Security Analyst
1 week ago
Bengaluru, Karnataka, India Bizom Full time ₹ 5,00,000 - ₹ 12,00,000 per yearInformation Security Analyst / SpecialistWe are looking for a detail-oriented Information Security Analyst/Specialist to join our InfoSec team. The ideal candidate will ensure compliance with industry standards, strengthen security operations, manage risks, and collaborate across teams to safeguard our systems and data.ResponsibilitiesInformation Security...
-
Information Security Analyst
7 days ago
Bengaluru, Karnataka, India, Karnataka Bizom Full timeInformation Security Analyst / SpecialistWe are looking for a detail-oriented Information Security Analyst/Specialist to join our InfoSec team. The ideal candidate will ensure compliance with industry standards, strengthen security operations, manage risks, and collaborate across teams to safeguard our systems and data.ResponsibilitiesInformation Security...