More jobs:
Sr Analyst, Information Security
Job in
Charlotte, Mecklenburg County, North Carolina, 28203, USA
Listed on 2026-06-24
Listing for:
Lowe's Companies, Inc.
Full Time
position Listed on 2026-06-24
Job specializations:
-
IT/Tech
Cybersecurity, Security Manager, Network Security
Job Description & How to Apply Below
Thank you for dedicating your time and talent to Lowe's. We want to give you more opportunities to learn and grow, so if you find a position you're interested in below, we encourage you to apply!
Job Description Summary
The Offensive Security Team is seeking a highly skilled Red Team Operator to help plan and execute authorized, threat-informed offensive security operations across Lowe's enterprise, cloud, identity, endpoint, and retail technology environments. This role will focus on realistic adversary emulation, initial access, C2 infrastructure, operational security, endpoint telemetry, evasion research, Active Directory, cloud identity, and offensive tooling.
The ideal candidate is a disciplined offensive security professional who can safely emulate modern adversary behavior, identify meaningful attack paths, and translate findings into actionable improvements for detection engineering, security operations, incident response, infrastructure, cloud, and identity teams. This role requires strong technical depth, sound judgment, clear communication, and the ability to operate ethically and professionally in sensitive environments.
This position will play a key role in strengthening Lowe's ability to prevent, detect, respond to, and recover from advanced cyber threats while helping improve the company's overall security posture through red team operations, purple team collaboration, control validation, and executive-ready reporting.
Key Responsibilities
* Plan, scope, and execute authorized red team and adversary emulation operations across enterprise, cloud, identity, endpoint, application, and retail technology environments.
* Conduct realistic initial-access scenarios aligned to approved rules of engagement, including external attack surface testing, phishing simulation, identity abuse, public-facing application exploitation, SaaS/cloud footholds, and other authorized access paths.
* Design, deploy, operate, and safely decommission C2 infrastructure used during approved red team operations.
* Maintain strong operational security practices across tooling, infrastructure, logging exposure, operator behavior, payload safety, engagement deconfliction, and post-operation cleanup.
* Develop, modify, test, and review offensive tooling, payloads, automation, and tradecraft in controlled and authorized environments.
* Conduct endpoint telemetry and evasion research to understand how security controls detect, block, or miss adversary behavior.
* Identify and validate attack paths involving Active Directory, ADCS, Kerberos, privileged access, trust relationships, Microsoft Entra , cloud IAM, SaaS platforms, and endpoint controls.
* Partner with Detection Engineering, SOC, Threat Hunting, and Incident Response teams to improve visibility, alerting, response playbooks, and control effectiveness.
* Translate red team findings into clear technical reports, executive summaries, attack narratives, detection gaps, and prioritized remediation recommendations.
* Map adversary behaviors, findings, and emulation plans to common frameworks such as MITRE ATT&CK.
* Support purple team exercises that validate detection logic, response workflows, and defensive control improvements.
* Stay current on adversary tradecraft, offensive security research, cloud and identity attack paths, endpoint security capabilities, and emerging defensive technologies.
* Mentor other offensive security team members and contribute to the development of repeatable methodologies, lab environments, tooling standards, and operational processes.
Required Qualifications
* Bachelor's Degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field (or equivalent work or military experience in a related field)
* 4 years of experience in information security
* Intermediate understanding of fundamental security and network concepts (Windows and Unix security: OS lockdown; logging and monitoring; application security; user access; perimeter protection principles, network communication rules; intrusion detection and analysis methods; etc.).
Preferred Qualifications
* 6+ years of hands-on offensive security…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×