Your Impact

As an Information Security Analyst focusing specifically on Security Awareness & Training, this role completes activities that help drive awareness and adherence to information security policies and standards. As a key contributor, you will identify unique threats, craft engaging training content, and reduce human risk through targeted campaigns and initiatives. In collaboration with cross-functional teams, you will help embed security best practices across the organization.

What You’ll Do

As an Information Security Analyst, you will;

Have strong creative and design background proficiency in industry-standard branding, design software, and industry trends, and applying them when suitable.Play a pivotal role in shaping ISG’s image; drive creativity across initiatives to ensure messaging resonates throughout the business. Help lead and mature the Security Ambassador Program.Partner with the Lead Analyst to execute plans and initiatives as they relate to us engaging with various business units.Collaborate closely with leadership to align strategies and business goals, while establishing repeatable processes for high-quality content creation.Design engaging event materials, images, and compelling content such as signage, banners, digital, print, swag, or websites.Work in conjunction with corporate communications teams to generate a consistent flow of multimedia content across various enterprise-wide channels.Concurrently manage multiple projects, overseeing timelines and workflow to meet deadlines.Training Program Development – Design, develop, and implement information security awareness and training programs tailored to Lowe's needs, objectives, and target audience.Security Awareness Campaigns – Manage and conduct security awareness campaigns and initiatives to promote a security-conscious culture.Training Delivery – Manage and conduct security training sessions for employees and stakeholders through various delivery methods.Metrics and Evaluation – Define, analyze, and continuously improve key performance indicators (KPIs) and metrics to measure the effectiveness of security awareness and training programs.Software Developer education – Manage programs to educate the software developer community in the company on secure coding practices by developing content and conducting targeted awareness and training programs.Event Management – Active participation in organizing, hosting, and conducting Security awareness events like Security summits, Stay Aware, Panel discussions, etc.Phishing Simulations – Develop and conduct phishing simulations to educate employees on identifying and responding to social engineering attacks.Security Culture Promotion - Foster a strong security culture by promoting best practices, reinforcing desired behaviors, and raising awareness of emerging security threats and trends.Security Policy Communication - Assist in the effective dissemination of security policies, standards, and guidelines to employees and other stakeholders through various awareness and training programs.

Required Qualifications

Bachelor's Degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field (or equivalent work or military experience in a related field)1-2 years of experience in information securityBasic understanding of fundamental security and network concepts (Windows and Unix security: OS lockdown; logging and monitoring; application security; user access; perimeter protection principles, network communication rules; intrusion detection and analysis methods; etc.)

Preferred Qualifications

IT experience in the retail industryRelevant information security certifications (e.g., CISSP, CISM, CEH, PCI ISA, CRISC, CISA, OSCP, GPen)1 year of experience developing Cybersecurity or information assurance policies, standards, awareness training, or equivalent issuances.1 year of experience conducting assessments or technical reviews to analyze risk.Experience with information security programs, audits, controls, assessments, risk assessments, or remediation management.Experience conducting information security risk assessments of vendors and vendor software.

Where You’ll Be

Associates are required to relocate to the Charlotte region to foster collaboration and facilitate improved testing and support.Lowe’s supports a Flex Office concept where in-person work is required two days per week at the Charlotte Tech Hub.Most business meetings are planned around the Eastern time zone.

About US

Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2023 sales of more than $86 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing and helping to develop the next generation of skilled trade experts. For more information, visit www.Lowes.com

Lowe’s is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.