Security Expert– Network Security

작업 내용

Description

At Lowe’s Canada, over 26,000 employees let their passion blossom every day. Our teams are driven by the desire to help people bring their projects to life and are committed to making a difference in the communities we serve.

We operate or service some 470 corporate and affiliated dealer stores. With a distinctive product and service offering and complementary store formats ranging from neighbourhood hardware stores to big box stores, our Lowe’s, RONA, Reno-Depot, and Dick’s Lumber banners are always looking for dedicated employees to help meet the needs of all DIYers and contractors.

You’ve got the talent? We’ve got the tools! Here, your work and ideas will contribute to building a flourishing organization. Your voice will always be heard and valued. You’ll find career opportunities that live up to your ambitions and be able to further develop your unique set of skills.

So if you’re looking to do what you love, and to grow and evolve within our family—one of the best employers in Canada according to a recent Forbes survey—we could be perfect for each other.

Our expectations

Reporting to the IT Manager, Information Security - Engineering and Operations, the Senior Security Specialist – Network Security will support the design, implementation and ongoing operation of information security tools and services. This includes leading the process of translating business and technical requirements into robust enterprise security software solutions that ensure information assets are adequately protected with acceptable levels of control. This also includes monitoring, testing, and evaluating security assessments of systems and taking steps to design and implement remediation solutions.

To be successful, the individual in this role must have strong knowledge of security practices and tools related to identity and access management along with enterprise digital certificate management systems. This role establishes and maintains programs that enable the business to operate efficiently and remain in compliance with regulatory and industry best practices.

Your role

• Leads the implementation and maintenance of assigned information security solutions to ensure successful deployment and operation; develops and documents detailed standards (e.g., guidelines, processes, procedures);
• Assists the Information Security team in monitoring security systems, reviewing logs, and managing information security systems;
• Conducts regular security vulnerability assessments and provides exception reporting and remediation plans to leadership;
• Designs and performs internal and external penetration validation testing to ensure that computer systems are up to date relative to all operating systems, patches, and virus protection software;
• Collaborates with other technology teams including Engineering to design and implement remediation solutions;
• Identifies, reports, and provides assistance during information security incidents as part of an Incident Response Team; reviews and responds to security alerts to investigate malicious activity;
• Supports evaluation of new security technologies that address both current and future needs based on emerging threats and industry trends;
• Keeps up to date with exploits relevant to the retail sales environment;
• Solves complex architecture/design and business problems; solutions are extensible; works to simplify, optimize, remove bottlenecks, etc.;
• Provides mentoring and guidance to more junior level engineers; may provide feedback and direction on specific engineering tasks;
• Responds to escalated security issues for enterprise systems; facilitates advanced diagnosis and troubleshooting when necessary;
• Participates in the implementation of hardware and software changes into environments to ensure security requirements are met ;
• Provides input into security breach response procedures; helps lead security breach response activities;
• Leads break/fix activities, escalating problems to senior management and/or vendors as appropriate;
• Analyzes the output of industry standard cybersecurity tools and identifies remediations to reduce risk and exposure of applications;
• Completes custom enhancements of applications using secure coding techniques to reduce the threat of remote or local vulnerabilities;
• Evaluates entire applications (Container, Infrastructure, host platform) to identify potential threats and vulnerabilities;
  

Requirements

The qualifications we are looking for

• Master’s Degree in Computer Science, CIS, or related field;
• Relevant information security certifications (e.g., CISSP, CISM, CEH, PCI ISA, CRISC, CISA, OSCP, GPen);
• Advanced understanding of information security practices and policies;
• 5 years of technical network security experiences
• Knowledge of, or hands-on experience with security technologies of the following functions: NGFW, VPN, IPS/IDS, vulnerability management, access management, SIEM, endpoint security, threat intelligence
• Familiarity with one of more of the following Security standards such as NIST 800-53, NIST 800-171, PCI
• 2 years of IT experience developing and implementing business systems within an organization;
• 4 years of experience working with defect or incident tracking software;
• 4 years of experience with technical documentation in a software development environment;
• 2 years of experience working with an IT Infrastructure Library (ITIL) framework;
• Fluency in French and English (spoken and written);
• Be able to propose solutions and initiatives;
• Have a concern for customer service;
• Have intuition and vision to prevent attacks;
• Possess a strong capacity for analysis and synthesis;
• Ability to undertake research on security related topics and products;
• Strong problem solving skills;
• Excellent communication skills;
• Excellent communication skills; Organizational, service and quality awareness;
• Ability to work under pressure and manage multiple priorities;
• Ability to work under pressure and manage multiple priorities; Ability to work in a team environment;
• Have a working knowledge of Microsoft Office tools;
  

Your Benefits Of Working For Lowe’s Canada

By joining the Lowe’s Canada family, you’ll enjoy many benefits, such as:

• A fitness centre, sports activities, and showers
• A childcare centre that can accommodate up to 78 children
• A cafeteria with a delicious menu prepared by a dedicated chef, healthy options, as well as Starbucks and Tim Hortons coffee stations
• Exclusive employee discounts, plus a 10% discount on store merchandise (at all Lowe’s Canada locations)
• Benefits: retirement savings plan, annual bonuses, stock purchase plan, student incentive program, etc.
• Flexible hours and remote working
• Electric car charging stations
• Career growth opportunities within the company
• An inclusive and safe working environment
• Promotion of work-life balance
• An employer that’s involved in the community
• And much more!
  

The masculine generic is used without discrimination and only in order to simplify the text. Lowe’s Canada is committed to encouraging diversity and inclusion. We are pleased to consider applications from all qualified candidates, regardless of race, colour, religion, sexual orientation, gender, nationality, age, disability, or any other status protected by law.

Comments

Work conditions :