Lead Engineer_Information Security_Network Security

Innovate in Bengaluru

This position is based at our on-site office in Bengaluru. Lowe's offers an ultramodern work environment, complete with cutting-edge technology, collaborative workspaces, an on-site gym and clinic, and other perks to enhance your work experience. 

About Lowe’s

Lowe’s is a FORTUNE® 100 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2024 sales of more than $83 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit Lowes.com.
 
Lowe’s India, the Global Capability Center of Lowe’s Companies Inc., is a hub for driving our technology, business, analytics, and shared services strategy. Based in Bengaluru with over 4,500 associates, it powers innovations across omnichannel retail, AI/ML, enterprise architecture, supply chain, and customer experience. From supporting and launching homegrown solutions to fostering innovation through its Catalyze platform, Lowe’s India plays a pivotal role in transforming home improvement retail while upholding strong commitment to social impact and sustainability. For more information, visit Lowes India_lowes.co.in
 

About the Team 

The Network Security team is responsible for architecting, implementing, managing, and optimizing enterprise network security devices and network security solutions across on-premises datacenters and cloud environments.

Job Summary

The Lead Engineer, Information Security is a senior-level role responsible for architecting, implementing, managing, and optimizing enterprise firewall and network security solutions across on-premises datacenters and cloud environments. This position provides technical leadership in firewall governance, advanced troubleshooting, policy management, and incident response. The engineer will also ensure compliance through structured change management (CRQ) and continuous improvement of security controls.

Roles & Responsibilities

1. Network Design, Architecture, Deployment & Management.

• Design, configure, and maintain enterprise firewalls including Palo Alto Networks, Fortinet - FortiGate, Cisco

• Deep expertise in configuring and managing routers and switches, with hands-on experience using protocols like OSPF, BGP, and EIGRP.

• Lead the deployment and optimization of firewall policies, NAT rules, security zones, segmentation, and VPN configurations.

• Manage firewall operations for both on-premises datacenters and multi-cloud environments.

• Skills in deploying and optimizing wide-area and local-area networks for high availability.

2. Datacenter Network Security & Troubleshooting

• Provide expert-level troubleshooting of datacenter network and security issues involving firewalls, routing, switching, VPNs, load balancers, and connectivity failures.

• Lead root cause analysis (RCA) and implement long-term corrective actions for recurring problems.

• Work closely with network and infrastructure teams to resolve complex cross-functional issues.

3. Firewall Policy Creation & Governance

• Develop, review, and optimize firewall policies to ensure high security, minimal risk, and compliance with organizational standards.

• Utilize AlgoSec for rule analysis, change automation, risk assessment, and policy lifecycle management.

• Conduct periodic rule reviews and cleanup activities to maintain streamlined, efficient policies. Cloud Firewall Security (GCP & Azure & OCI)

• Implement and manage network security controls in Google Cloud Platform (GCP), including VPC firewall rules, Cloud Armor, and service perimeter configurations.

• Configure and maintain Azure Firewall, NSGs, ASGs, UDRs, and other cloud-native security controls.

• Collaborate with cloud engineering teams to integrate security into cloud architectures and deployments. Incident Management & Response

• Lead firewall-related security incidents, including detection, investigation, containment, and remediation.

• Work closely with SOC, threat intelligence, and vulnerability management teams to assess and mitigate risks.

• Provide detailed incident documentation, RCA, and follow-up action plans. Change Management (CRQ)

• Create, review, and execute Change Requests (CRQs) in accordance with ITIL best practices.

• Assess change impact, provide technical guidance, and coordinate implementation activities.

• Ensure all changes are documented, validated, and completed with minimal operational risk.

4. Technical Leadership & Collaboration

• Act as the Subject Matter Expert (SME) for firewall and network security services.

• Mentor junior engineers and provide guidance on best practices and troubleshooting methods.

• Partner with infrastructure, cloud, application, and security teams on initiatives requiring security expertise.

Years of Experience

• 10+ years of experience in architecting, implementing, managing, and optimizing network security solutions across on-premises datacenters and cloud environments.

Education Qualification

• Bachelor’s degree in computer science, CIS or related field.

Skill Set Required (Primary)

Technical Networking Skills

• Network Design & Architecture – Ability to design complex enterprise network infrastructures that are scalable and resilient.

• Routing & Switching – Deep expertise in configuring and managing routers and switches, with hands-on experience using protocols like OSPF, BGP, and EIGRP.

• WAN/LAN Management – Skills in deploying and optimizing wide-area and local-area networks for high availability.

Network Security Skills

• Firewall Administration – Advanced knowledge in configuring firewalls (e.g., Palo Alto, Cisco ASA) to enforce organizational security policies.

• Intrusion Detection/Prevention – Experience deploying and maintaining IDS/IPS solutions, analyzing alerts, and responding to security incidents.

• Network Access Control (NAC) – Implementing and managing NAC systems to control device/network access based on compliance and policy.

Tools and Technologies

• SIEM Platforms – Proficiency with security information and event management tools for monitoring and analyzing security events.

• VPN Technologies – Managing secure remote access using solutions such as IPsec, SSL VPNs, or MPLS.

• Cloud Networking & Security – Understanding cloud networking models (AWS, Azure, GCP) and native security controls.

Secondary Skills

• Leadership & Soft Skills

• Mentorship & Training – Coaching junior engineers and fostering a culture of continuous learning and security awareness.

• Project Management – Leading cross-functional teams to deliver complex networking/security projects on time and within scope.

• Documentation & Communication – Creating clear technical documentation and effectively communicating with technical/non-technical stakeholders.

Lowe's is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.