Sr Analyst, Information Security
$95.1k - $180.7kLowe's Companies, Inc.
Innovate in Charlotte Thank you for dedicating your time and talent to Lowe’s. We want to give you more opportunities to learn and grow, so if you find a position you’re interested in below, we encourage you to apply! Job Description Summary The Offensive Security Team is seeking a highly skilled Red Team Operator to help plan and execute authorized, threat-informed offensive security operations across Lowe’s enterprise, cloud, identity, endpoint, and retail technology environments. This role will focus on realistic adversary emulation, initial access, C2 infrastructure, operational security, endpoint telemetry, evasion research, Active Directory, cloud identity, and offensive tooling. The ideal candidate is a disciplined offensive security professional who can safely emulate modern adversary behavior, identify meaningful attack paths, and translate findings into actionable improvements for detection engineering, security operations, incident response, infrastructure, cloud, and identity teams. This role requires strong technical depth, sound judgment, clear communication, and the ability to operate ethically and professionally in sensitive environments. This position will play a key role in strengthening Lowe’s ability to prevent, detect, respond to, and recover from advanced cyber threats while helping improve the company’s overall security posture through red team operations, purple team collaboration, control validation, and executive-ready reporting. Key Responsibilities Plan, scope, and execute authorized red team and adversary emulation operations across enterprise, cloud, identity, endpoint, application, and retail technology environments. Conduct realistic initial-access scenarios aligned to approved rules of engagement, including external attack surface testing, phishing simulation, identity abuse, public-facing application exploitation, SaaS/cloud footholds, and other authorized access paths. Design, deploy, operate, and safely decommission C2 infrastructure used during approved red team operations. Maintain strong operational security practices across tooling, infrastructure, logging exposure, operator behavior, payload safety, engagement deconfliction, and post-operation cleanup. Develop, modify, test, and review offensive tooling, payloads, automation, and tradecraft in controlled and authorized environments. Conduct endpoint telemetry and evasion research to understand how security controls detect, block, or miss adversary behavior. Identify and validate attack paths involving Active Directory, ADCS, Kerberos, privileged access, trust relationships, Microsoft Entra ID, cloud IAM, SaaS platforms, and endpoint controls. Partner with Detection Engineering, SOC, Threat Hunting, and Incident Response teams to improve visibility, alerting, response playbooks, and control effectiveness. Translate red team findings into clear technical reports, executive summaries, attack narratives, detection gaps, and prioritized remediation recommendations. Map adversary behaviors, findings, and emulation plans to common frameworks such as MITRE ATT&CK. Support purple team exercises that validate detection logic, response workflows, and defensive control improvements. Stay current on adversary tradecraft, offensive security research, cloud and identity attack paths, endpoint security capabilities, and emerging defensive technologies. Mentor other offensive security team members and contribute to the development of repeatable methodologies, lab environments, tooling standards, and operational processes. Required Qualifications Bachelor's Degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field (or equivalent work or military experience in a related field) 4 years of experience in information security Intermediate understanding of fundamental security and network concepts (Windows and Unix security: OS lockdown; logging and monitoring; application security; user access; perimeter protection principles, network communication rules; intrusion detection and analysis methods; etc.) Preferred Qualifications 6+ years of hands‑on offensive security experience, including at least 4+ years conducting full‑scope red team or adversary emulation operations in enterprise environments. Equivalent demonstrated capability may substitute for strict year requirements. Demonstrated experience planning and executing authorized initial‑access operations across one or more of the following: phishing simulation, external attack surface exploitation, public‑facing application exploitation, identity abuse, SaaS/cloud footholds, or trusted third‑party/supply‑chain‑style scenarios. Strong understanding of OPSEC for red team operations, including infrastructure separation, engagement deconfliction, logging discipline, payload safety, operator attribution control, burn procedures, and clear rules of engagement. Advanced experience with C2 infrastructure design and operations, including staging, redirector concepts, operator workflows, infrastructure lifecycle management, detection exposure reduction, and post‑engagement teardown. Hands‑on experience with endpoint security telemetry and evasion research in authorized lab or enterprise testing environments, including the ability to reason about EDR/AV behavior, security logs, SIEM visibility, and detection opportunities without relying only on public tools. Technical ability to develop, modify, or review offensive tooling using at least one scripting language such as Python or PowerShell and at least one systems or compiled language such as C, C++, C#, Go, or Rust. Experience with payload, implant, or agent development in authorized environments, including safe execution controls, error handling, logging awareness, operator control, and post‑operation cleanup. Deep understanding of Windows enterprise attack paths, including Active Directory, Kerberos, ADCS, delegation, trusts, privileged access, endpoint hardening, and identity‑based lateral movement. Working knowledge of cloud and SaaS attack paths, especially Microsoft Entra ID/Azure, Google Cloud, Google Workspace, OAuth/application consent, IAM misconfiguration, service accounts, and cloud logging. Ability to map operations to MITRE ATT&CK and produce actionable outputs for blue teams, including detection gaps, control weaknesses, attack‑path narratives, and remediation recommendations. MITRE specifically describes ATT&CK as a common language and framework for red teams to emulate specific threats and plan operations. Excellent written and verbal communication skills, with the ability to brief technical operators, SOC analysts, engineering teams, and leadership. About Lowe’s Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE 100 home improvement company with total fiscal 2025 sales of more than $86 billion. Lowe’s employs approximately 300,000 associates and operates over 1,750 home improvement stores, 540 branches and 120 distribution centers. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit Lowes.com. Lowe’s is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law. Pay Range: $95,100.00 - $180,700.00 annually Starting rate of pay may vary based on factors including, but not limited to, position offered, location, education, training, and/or experience. For information regarding our benefit programs and eligibility, please visit #J-18808-Ljbffr Lowe's Companies, Inc.
$100k - $115k
Overview As a member of the Information Services Department, the Senior Analyst, Cybersecurity Operations & Response supports the execution and continuous improvement... .... This role is responsible for assisting with security operations, incident response activities, and threat...SeniorFull timeContract workWork at office$90k - $160k
IT RISK & CONTROL SENIOR ANALYST WHAT IS THE OPPORTUNITY? The IT Risk Senior Analyst is... ...complex technical environment. The ITRM Security Senior Analyst will conduct fit for purpose... ...Analyst’s goal is to create actionable information for IT and business leadership, and to...SeniorRemote work$87.7k - $100.1k
...analyze diverse datasets, using metrics to inform risk policies, monitor the threat... ...Risk Management, IT Audit, or Information Security Governance At least 6 years of Financial... ...worked. Charlotte, NC: $87,700 - $100,100 for Sr. Risk Associate McLean, VA: $96,500 - $11...SeniorFull timePart timeLocal areaShift work- ...Sr. Business Analyst TrueBridge strives to exceed our clients' expectations and place talented individuals in high impact and fulfilling... ...Program Management, Business Analysis, Data & Analytics, Information Security, Finance, Technical Support, Application Development, and...SeniorImmediate start
- ...cause themes, remediation progress, and service impact. Analyze structured and unstructured operational data to uncover trends that inform service improvement, stability efforts, and risk reduction. Partner with engineering, production support, infrastructure, service...Senior
- hackajob is collaborating with Vanguard to connect them with exceptional professionals for this role. At Vanguard Personal Investor Marketing, we’re on a mission to help individuals achieve financial well-being by connecting them with our world-class investment products...SeniorWork experience placement
- ...Sr Business Analyst Visa status: U.S. Citizens and those authorized to work in the U.S. are encouraged to apply. Tax Terms: W2, 1099 Corp-Corp or 3rd Parties: Yes We are looking for a candidate having strong experience in Business Analyst. Good experience in direct...SeniorWork experience placement
$56.37 per hour
...Senior Data Loss Prevention Analyst Genesis10 is currently seeking a Senior Data Loss Prevention Analyst for a hybrid position with... ...opportunity. This role supports Data Loss Prevention and Data Security initiatives with the mission to protect sensitive data. The...SeniorHourly payPermanent employmentContract work- ...Senior Business Analyst We are seeking an experienced Senior Business Analyst with strong expertise in the Insurance Property & Casualty (P&C) domain. The ideal candidate will have hands-on experience working with Claims processes, strong data analysis capabilities...Senior
- ...Job Description Summary Xylem is seeking an experienced Sr. IT Analyst with deep expertise in Power BI , Databricks , and modern... ...that transform complex data into actionable insights, enabling informed decision‑making across the organization. This position...Senior
- ...Senior Data Analyst (Hybrid) – Charlotte, NC; Chicago, IL; Iselin, NJ; New York, NY | Pay: 40/hr We are seeking a highly motivated and... ...oriented Reference Data Analyst to join our Reference Data and Security Master team. The ideal candidate will have hands‑on experience...SeniorWork at officeNight shiftAfternoon shift
- ...A major workforce solutions company is seeking a Senior Data Security Analyst focusing on Data Loss Prevention to join their team in Charlotte. This critical role involves monitoring data security incidents and refining policy efficacy while collaborating with leadership...Senior
- ...design, issue remediation) to uplift risk capability and strengthen risk culture. Build effective relationships to influence risk-informed decisions and promote timely escalation and resolution of emerging risks. Champion the integration of automated technologies and AI...Senior
$48 - $55 per hour
...travel. Job Description: Epic Certified Health Information Management (HIM) Senior Analyst will bring experience managing applications, with a strong... ...with HIPAA, data governance, and organizational security policies. Participate in regular team meetings, providing...SeniorHourly payLive inWork at officeLocal areaFlexible hours- ...Definition of Work The cybersecurity senior analyst, under intermittent supervision,... ...and manage operational technology cyber security threats and deliver protection capabilities... ...security incidents related to operational and information technology environments Correlate event...SeniorLocal area
- ...legal and regulatory risk posture. Collaborate with attorneys and subject-matter experts across legal, compliance, privacy, information security, procurement, and technology to address issues and incorporate applicable requirements. Support updates to legal...Contract workWork experience placementShift work
- Position Sr. Business Analyst o9 Location Charlotte, NC (Onsite) Employment Type W2 Position Required Skills Hands‑on experience in o9 platform Solid understanding of end‑to‑end Supply Chain Planning concepts (Demand, Supply, Capability Planning, S&OP, etc.) Ability...Senior
- ...other providers, need to drive down costs within their supply chain and provide high value healthcare. As a Senior Portfolio Business Analyst, you are the accountable liaison between product management, software development, user experience, and support. You understand the...Senior
- ...Responsibilities and Duties Provide support to Strategic Workforce Planning Sr. Director to Develop, evaluate and implement new processes,... ...during the Workforce Planning cycle to capture and manage information Provide support testing workforce models to forecast future...SeniorWork experience placement
- ...AI tools creatively across the work. The analyst supports CRC’s broader AI adoption... ...coordinate reviews with Procurement, Legal, Security, and Privacy; draft recommendation memos... ..., with the ability to translate complex information into clear insights and actionable recommendations...SeniorFull time
$137.61k - $168.19k
...balance, and resources to make a positive impact on the future - including your own. We're actively seeking a talented Sr Data Management Analyst to join our team in Newport Beach, CA. The Sr Data Management Analyst role is a strong functional and engineering/technical...Senior- ManpowerGroup Global, Inc. is seeking an Information Security Strategic Analyst to join their team. This role involves designing and communicating information security strategies, developing multi-year roadmaps, and facilitating cross-functional workshops. The ideal candidate...
$65 - $75 per hour
...Experience Prior banking or financial services experience at comparable size and complexity Experience specifically within information security, technology risk, regulatory or IT audit, not general business controls only Hands on regulatory exam and audit support...Contract workTemporary work$77k - $202k
...and deepen technical skills Develop and implement data validation processes to maintain data integrity and security Conduct exploratory data analysis to inform insights and recommendations for strategic goals Create dashboards and visualizations using tools such as Power...SeniorH1bLocal area$114.5k - $157.4k
...and associated products. At times, this may include general securities analysis and support. Prepare written reports that identify... ...improvement or development of new offerings. Communicate investment information concisely both in writing and verbally to a variety of...SeniorFull timePart timeFor contractors$105k - $120k
...is seeking a Senior Project Management Analyst to support the Global Navy and Air Force... ...successfully obtain and maintain a U.S. Government security clearance is a condition of continued... ...law, we provide the following information to promote pay transparency and equity....SeniorContract workRemote workRelocation$70k - $140k
...Resolution Planning Office is seeking a Resolution & Recovery Planning Analyst to join the Resolution & Recovery Planning Team. The... ...programs. These activities will include creating or sourcing information from teams across the organization and driving enhancements to...SeniorWork at officeRemote workWork from homeFlexible hours- Sr Data Management Analyst - SAP, data migration tools Join to apply for the Sr Data Management Analyst... ...), and 12 Paid Holidays. For more information: U.S. Citizen requirement: Must be... ...critical challenges around energy, safety, security, air travel, productivity, and global...Senior16 hoursFull timeTemporary workWork from homeFlexible hours
- ...Senior Analyst – Application Development Duration: 12 months Location: On Site - Charlotte, NC Payment Application Design and Development Analyze client requirements and translate these into required application changes. Experienced with IBM AS400 RPG development...Senior
$96.4k - $120.5k
...Want to work with highly motivated individuals on high-performance teams? Join WWT today! What will you be doing? IT Senior Analyst position will assist in requirement collection and refinement activities associated with the systematic exchange of critical data elements...SeniorPermanent employmentFull timeWork experience placementH1bRemote workVisa sponsorshipShift work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Sr Analyst, Information Security. Be the first to apply!
- senior trade analyst Charlotte, NC
- law enforcement response team analyst Charlotte, NC
- bsa analyst Charlotte, NC
- etl analyst Charlotte, NC
- command center analyst Charlotte, NC
- senior analyst Charlotte, NC
- behavioral analyst Charlotte, NC
- corporate actions analyst Charlotte, NC
- health analyst Charlotte, NC
- incentive compensation analyst Charlotte, NC



