Sr Analyst

Your Impact
As a Senior Analyst, Offensive Security, you will conduct advanced penetration tests and red team assessments across our applications, networks and systems. You will collaborate with cross-functional teams to analyze security vulnerabilities and provide actionable recommendations for remediation.

This role solves complex problems while creating and optimizing processes and often takes a lead role in implementing new services and technologies.

What you will do

• Conduct red team assessments

• Design, implement and maintain C2 infrastructure to simulate APT

• Develop and refine testing methodologies, ensuring they align with industry best practices

• Analyze findings and present results and recommendations to both technical and non-technical audiences

• Foster a culture of knowledge sharing and continuous improvement within the team.

• Be motivated to stay current on the latest attack vectors, and security trends

• Contribute to security policies and incident response plans based on assessment findings

Qualifications:
Minimum Qualifications
• Bachelor’s Degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field (or equivalent work or military experience in a related field)

• 4 years of experience in information security 

• Intermediate understanding of fundamental security and network concepts (Windows and Unix security: OS lockdown; logging and monitoring; application security; user access; perimeter protection principles, network communication rules; intrusion detection and analysis methods; etc.)

Preferred Qualifications

• 6+ years of experience in red teaming exercises

• In-depth knowledge of network security, exploitation techniques, and understand of advanced persistent threats (APTs )

• Technical knowledge or experience developing using Python, or Perl, and compiled languages such as C, C++, C#, or Java

• Advanced experience with C2 infrastructure models. This includes setup and maintenance of C2 infrastructures. As well as OPSEC and EDR evasion techniques

• Experience conducting ADCS assessments

• Knowledge of attack vectors and mitigation techniques

• Excellent analytical, problem-solving, and communication skills

• Relevant information security certifications (e.g., OSCP, OSCE, GPEN, CRTP, CRTO)
• IT experience in the retail industry
• Technical knowledge of Microsoft and Google cloud platforms, to include knowledge of all feature sets applicable to security event detection and monitoring (specific to Security Operations Center role)
• Previous experience working in a Security Operations Center (SOC) environment
• Experience with malware analysis
• Intermediate knowledge of threat intelligence, threat hunting, attack surface management and investigations support functions
• Highly experienced in the understanding of the output from cybersecurity scanning technologies to include operating systems, Custom Code, Web-based vulnerability analysis, 3rd party installed and hosted applications, cloud-hosted compute platforms, and microservices
• Demonstrated understanding of internal security controls, assess risks and identify opportunities for improvement
• Highly experienced with information security concepts related to Threat and Vulnerability Management, system architecture and Internet technology
• Expertise in Vulnerabilities (OS, application, custom code, configuration, etc.) and associated risks

Where You’ll Be;

• Associates are required to relocate to the Charlotte region to foster collaboration and facilitate improved testing and support.
• Lowe’s supports a Flex Office concept where in-person work is required two days per week at the Charlotte Tech Hub
• Most business meetings are planned around the Eastern time zone.

About Lowe’s
 Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2023 sales of more than $86 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing and helping to develop the next generation of skilled trade experts. For more information, visit Lowes.com.

Lowe’s is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.