Sr Engineer, Information Security (Python, JavaScript, Node.js)

Innovate in Charlotte
Thank you for dedicating your time and talent to Lowe's. We want to give you more opportunities to learn and grow, so if you find a position you're interested in below, we encourage you to apply!
Your Impact
The primary purpose of this role is to design, develop, and support software-driven security tools and automation services that enhance Lowe's enterprise security capabilities. This includes translating business and technical requirements into scalable security platforms, APIs, and internal applications that improve how security data is collected, processed, and consumed across the organization. The role is responsible for building and maintaining reliable, well-engineered solutions that reduce manual effort and increase consistency in security operations.
To be successful, the individual in this role must have strong software engineering skills, practical knowledge of secure development practices, and experience working with automation, APIs, and modern application architectures. This role establishes and maintains engineering solutions that enable security teams to operate more efficiently while supporting compliance with regulatory and industry best practices.
What You Will Do

• Design, build, and enhance automated security services and internal platforms, using advanced scripting and software engineering practices to improve the accuracy, efficiency, and scalability of security capabilities across the enterprise.
• Lead implementation and ongoing maintenance of DevSecOps-driven security solutions, ensuring they are well-documented, reliable, and aligned with enterprise standards, guidelines, and operational practices.
• Develop API integrations, data pipelines, and automated workflows that collect, normalize, and present security data to partner teams, enabling measurable and actionable security insights.
• Collaborate closely with security and engineering teams to translate requirements into practical, automated solutions-often supporting teams without development expertise by engineering tools and processes on their behalf.
• Maintain and enhance internal applications, including an Express.js-based platform, ensuring secure coding practices, high availability, and effective data handling.
• Support incident response activities by providing engineering expertise, tool automation, and data enrichment that improve investigation and remediation accuracy.
• Evaluate emerging security technologies, automation tools, and engineering approaches to address current and future security needs; participates in technical proofs of concept and adoption planning.
• Identify opportunities to simplify or optimize existing security workflows, removing bottlenecks and improving the reliability and consistency of automated security processes.
• Provide technical mentorship and guidance to junior engineers on the DevSecOps team, particularly in automation, scripting, and secure development techniques.
• Respond to escalations relating to the team's automation services and internal applications, performing advanced troubleshooting and coordinating with partner teams or vendors when necessary.
• Analyze outputs from security tools and data sources-such as vulnerability, configuration, or access management systems-to identify systemic issues and develop automated remediation or reporting solutions.
• Review applications, containers, and supporting infrastructure components to identify vulnerabilities and misconfigurations; contribute engineering solutions that reduce risk exposure through automation rather than manual processes.

Minimum Qualifications

• Bachelor's degree in Computer Science, CIS, Engineering, Cybersecurity, or related field, or equivalent years of experience in lieu of education requirement, if applicable
• 5 years of experience in technology system support, software development, or a related field
• 2 years of experience with information security applications and systems.
• 2 years of experience in IAM or Vulnerability Management.
• 2 years of scripting experience using Python, JavaScript, and Node.js

Preferred Skills/Education

• Master's degree in Computer Science, CIS, Business Administration, or related field
• 3 years of experience evaluating entire applications (Container, Infrastructure, host platform) to identify potential threats and vulnerabilities
• 1 year of DevOps experience
• 3 years of experience evaluating entire applications (Container, Infrastructure, host platform) to identify potential threats and vulnerabilities
• 3 years of experience in the custom enhancement or development of applications using secure coding techniques to reduce the threat of remote or local vulnerabilities
• 5 years of IT experience developing and implementing business systems within an organization
• 5 years of experience working with defect or incident tracking software
• 5 years of experience writing technical documentation in a software development environment
• 3 years of experience working with an IT Infrastructure Library (ITIL) framework
• 3 years of experience leading teams, with or without direct reports
• 5 years of experience working with source code control systems
• Experience working with Continuous Integration/ Continuous Deployment tools
• Experience with Cloud technologies
• PCI ISA
• OSCP
• GPen

Where You'll Be;

• Associates are required to relocate to the Charlotte region to foster collaboration and facilitate improved testing and support.
• Lowe's supports a Flex Office concept where in-person work is required three days per week at the Charlotte Tech Hub
• Most business meetings are planned around the Eastern time zone.

About Lowe's
Lowe's Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2024 sales of more than $83 billion, Lowe's operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe's supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts, and providing disaster relief to communities in need. For more information, visit Lowes.com.
Lowe's is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.