Innovate in Bengaluru

This position is based at our on-site office in Bengaluru. Lowe's offers an ultramodern work environment, complete with cutting-edge technology, collaborative workspaces, an on-site gym and clinic, and other perks to enhance your work experience. 

About Lowe’s

Lowe’s is a FORTUNE® 100 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2024 sales of more than $83 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit Lowes.com

Lowe’s India, the Global Capability Center of Lowe’s Companies Inc., is a hub for driving our technology, business, analytics, and shared services strategy. Based in Bengaluru with over 4,500 associates, it powers innovations across omnichannel retail, AI/ML, enterprise architecture, supply chain, and customer experience. From supporting and launching homegrown solutions to fostering innovation through its Catalyze platform, Lowe’s India plays a pivotal role in transforming home improvement retail while upholding strong commitment to social impact and sustainability. For more information, visit Lowes India

About the Team

This team is responsible for architecting, implementing, managing, and optimizing enterprise network security devices and network security solutions across on-premises datacenters and cloud environments.

Job Summary

The Lead Engineer, Information Security is a senior-level role responsible for architecting, implementing, managing, and optimizing enterprise firewall and network security solutions across on-premises datacenters and cloud environments. This position provides technical leadership in firewall governance, advanced troubleshooting, policy management, and incident response. The engineer will also ensure compliance through structured change management (CRQ) and continuous improvement of security controls.

Roles & Responsibilities

• Firewall Architecture, Deployment & Management:
  •    Design, configure, and maintain enterprise firewalls including Palo Alto Networks, Fortinet FortiGate, Cisco
  •    Lead the deployment and optimization of firewall policies, NAT rules, security zones, segmentation, and VPN configurations.
  •    Manage firewall operations for both on-premises datacenters and multi-cloud environments.

• Datacenter Network Security & Troubleshooting:
  •    Provide expert-level troubleshooting of datacenter network and security issues involving firewalls, routing, switching, VPNs, load balancers, and connectivity failures.
  •    Lead root cause analysis (RCA) and implement long-term corrective actions for recurring problems.
  •    Work closely with network and infrastructure teams to resolve complex cross-functional issues.

• Firewall Policy Creation & Governance:
  •    Develop, review, and optimize firewall policies to ensure high security, minimal risk, and compliance with organizational standards.
  •    Utilize AlgoSec for rule analysis, change automation, risk assessment, and policy lifecycle management.
  •    Conduct periodic rule reviews and cleanup activities to maintain streamlined, efficient policies.

• Cloud Firewall Security (GCP & Azure & OCI):
  •    Implement and manage network security controls in Google Cloud Platform (GCP), including VPC firewall rules, Cloud Armor, and service perimeter configurations.
  •    Configure and maintain Azure Firewall, NSGs, ASGs, UDRs, and other cloud-native security controls.
  •    Collaborate with cloud engineering teams to integrate security into cloud architectures and deployments.

• Incident Management & Response:
  •    Lead firewall-related security incidents, including detection, investigation, containment, and remediation.
  •    Work closely with SOC, threat intelligence, and vulnerability management teams to assess and mitigate risks.
  •    Provide detailed incident documentation, RCA, and follow-up action plans.

• Change Management (CRQ):
  •    Create, review, and execute Change Requests (CRQs) in accordance with ITIL best practices.
  •    Assess change impact, provide technical guidance, and coordinate implementation activities.
  •    Ensure all changes are documented, validated, and completed with minimal operational risk.

• Technical Leadership & Collaboration:
  •    Act as the Subject Matter Expert (SME) for firewall and network security services.
  •    Mentor junior engineers and provide guidance on best practices and troubleshooting methods.
  •    Partner with infrastructure, cloud, application, and security teams on initiatives requiring security expertise.

Years of Experience

• 10+ years of experience in architecting, implementing, managing, and optimizing network security solutions across on-premises datacenters and cloud environments.

Education Qualification

• Bachelor’s degree in computer science, CIS or related field.

Skill Set Required

• Hands-on expertise with:

• Palo Alto (Panaroma App-ID, Threat Prevention)

• Fortinet FortiGate

• Fortimanager, FortiAnalyzer , Panoroma

• GCP Firewall, VPC security, Cloud Armor

• Azure Firewall, NSGs, ASGs, network security controls

• Strong experience with datacenter troubleshooting, network flows, packet capture, and performance analysis.

• Experience with large-scale migration activities, and optimization and securitization of firewalls and governance

• Proficiency with AlgoSec or similar firewall policy management tools.

• Strong background in incident management, RCA, and remediation actions.

• Experience with CRQ/ITIL change management frameworks.

Secondary Skills

• Palo Alto PCNSE

• Fortinet NSE 4/5/7

• GCP Professional Cloud Security Engineer

• Azure Security Engineer (AZ-500)

• ITIL Foundation

• CISSP, CCSP, or equivalent

Lowe's is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.