Your Impact
The primary purpose of this role is to lead the development and ongoing delivery of information security tools, and processes, and ensure that information security projects and initiatives meet objectives on time by increasing employee adoption and usage.
This role will focus on preparing, supporting, and equipping people to adopt and use changes to business processes, systems technology, and organizational structures. This includes responsibility for creating, executing, and improving processes and procedures while also providing thought leadership and guidance to the rest of the department.
This role addresses complex and interdependent issues that span technologies, business units, and services, and drives continuous enhancement to tools and processes leveraging a strategic perspective supported by a keen understanding of security engineering best practices, risk, and regulatory requirements, and can translate them to the laymen business leader.
The individual in this role has an expert ability to adapt to and learn various information security tools, technologies, and processes demonstrated through a proven track record of progressive hands-on experience (e.g., prior security engineering, architecture, operations, consulting, or other related roles).
What you will do
- Ensure that there is a business perspective on how new technical capabilities will be integrated into the business, including planning around key business cycles, selecting appropriate customers for migration, etc.
- Outline key business engagement messages that need to be communicated throughout the program/project, define, and communicate the approach for change management, and provide guidance and raise awareness to help change leaders demonstrate effective behaviors to deliver change.
- Work with stakeholders and internal customers to establish, provide, and agree on clear goals, objectives, and performance delivery outcomes as well as timelines.
- Support planning and response with internal teams and manage relationships with business units and functions to deliver high-quality results.
- Utilize reporting, data, and analytics to measure process and project performance, deliver process operational efficiencies, and inform stakeholders.
- Develop and implement new processes to enhance team productivity and work efficiency, including standards and best practices.
- Establish feedback processes and lead analysis of change management success.
- Enable continual improvements to change management methodology, tools, and training necessary to enhance the maturity across the organization.
- Lead departmental strategy development and execution, ensuring alignment with key internal stakeholders, business priorities, and outcomes.
- Conduct continuous improvement sessions; ensure lessons and recommendations are incorporated.
- Represent and provide support to department leadership in operational planning, leading key priorities, and delivering strategic outcomes.
- Partner on strategy definition and adoption.
Qualifications
Minimum Qualifications
- Bachelor's Degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field (or equivalent work or military experience in a related field).
- 6 years of experience in information security
- Advanced understanding of fundamental security and network concepts (Windows and Unix security: OS lockdown; logging and monitoring; application security; user access; perimeter protection principles, network communication rules; intrusion detection and analysis methods; etc.).
Preferred Qualifications
- 7+ years of hands-on experience in security architecture, engineering, or an agile operations-driven role
- At least 3 years of leading/managing people.
- A proven track record of leading and managing successful information security change and learning initiatives, delivering measurable results and value, in large complex technology organizations.
- Relevant information security certifications (e.g., CISSP, CISM, CEH, PCI ISA, CRISC, CISA, OSCP, GPen)
- Strong problem-solving and strategic/critical thinking skills proven through prior experience.
- Proven skills in dealing with ambiguity and paradox, and leading change.
- Experience in portfolio and/or project management, strategic and operational planning, and leading multiple complex projects with organization-wide impact.
- Demonstrated experience/understanding with platform technologies including but not limited to the following:
- A detailed, technical understanding of Public Cloud computing (e.g., GCP/Azure). Especially how Public Cloud services are hardened, and controls are applied to secure data, ensure resiliency/availability as well as prevent unauthorized access.
- APIs/ micro-services
- Identity & Access Management as well as Secrets Management
- Securing workforce technologies like Endpoints and Email
- DevSecOps and SSDLC
- Securing Software as a Service (SaaS) tools
- Securing Containerized workloads at build and runtime
- Interpersonal savvy and comfort interacting with and presenting to all levels of the organization, including senior leaders.
- Exceptional verbal and written communication skills, specifically the ability to communicate within the context of the intended audience, whether that be senior executives or highly technical engineering resources.
- Demonstrated organizational agility to work across organizational boundaries, influence, and collaborate with all levels on solutions that benefit the organization.
- Ability to work horizontally with/ shared priorities to elevate functional priorities over department objectives.
- Thinks within lateral accountabilities and interdependence.
- Demonstrated organizational agility to work across organizational boundaries, influence, and collaborate with all levels on solutions that benefit the organization.
- Ability to work horizontally with/ shared priorities to elevate functional priorities over department objectives.
- Thinks within lateral accountabilities and interdependence.
Skills:
- Collaboration
- Project Management
- Result Orientation
- Solution Delivery Process
- Stakeholder Management
- Analytical Thinking
- Business Acumen
- Financial Management
- Influence
- Risk Management
- Agile Practices
- Architecture
- Data Management
- Solution Design
- Technical Strategy Development
Where You’ll Be;
- Associates are required to relocate to the Charlotte region to foster collaboration and facilitate improved testing and support.
- Lowe’s supports a Flex Office concept where in-person work is required two days per week at the Charlotte Tech Hub
- Most business meetings are planned around the Eastern time zone.
About US
Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2023 sales of more than $86 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing and helping to develop the next generation of skilled trade experts. For more information, visit www.Lowes.com
Lowe’s is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.
Pay Range: $111,600.00 - $212,000.00 annually Starting rate of pay may vary based on factors including, but not limited to, position offered, location, education, training, and/or experience. For information regarding our benefit programs and eligibility, please visit https://talent.lowes.com/us/en/benefits.