Sr Analyst, Information Security_Monitoring

About Lowe’s

Lowe’s is a FORTUNE® 100 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2024 sales of more than $83 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit Lowes.com.

Lowe’s India, the Global Capability Center of Lowe’s Companies Inc., is a hub for driving our technology, business, analytics, and shared services strategy. Based in Bengaluru with over 4,500 associates, it powers innovations across omnichannel retail, AI/ML, enterprise architecture, supply chain, and customer experience. From supporting and launching homegrown solutions to fostering innovation through its Catalyze platform, Lowe’s India plays a pivotal role in transforming home improvement retail while upholding strong commitment to social impact and sustainability. For more information, visit Lowes India

About the Team

The Security Monitoring team operates as a 24/7 operations unit responsible for ensuring the stability and security of Identity & Access Management (IAM) and Network Security (NetSec) environments. Functioning similarly to a TOC/NOC model, the team serves as the first line of defense by continuously monitoring systems, identifying potential threats, and enabling rapid incident response through collaboration with L2/L3 support teams.

Job Summary:

The Security Monitoring Sr. Analyst will be responsible for real-time monitoring of IAM and Network Security systems, performing initial triage and troubleshooting of alerts, and ensuring timely escalation of incidents. The role requires strong operational discipline, analytical skills, and the ability to work in a fast-paced 24/7 environment while adhering to defined processes and SLAs.

Roles & Responsibilities:

Core Responsibilities:

• Continuously monitor IAM and Network Security tools for alerts, anomalies, and incidents
• Perform initial triage, validation, and prioritization of alerts
• Troubleshoot IAM and network-related issues using runbooks and standard procedures
• Escalate incidents to L2/L3 teams with proper documentation and evidence
• Track, update, and follow through incidents until closure
• Maintain accurate logs of alerts, actions taken, and timelines
• Identify recurring issues and highlight patterns for further analysis
• Participate in shift handovers to ensure seamless 24/7 coverage
• Adhere to SOPs, SLAs, and escalation protocols
• Contribute to process improvements and documentation updates

Years of Experience:

• 4 to 8 years of experience in a monitoring environment such as NOC, SOC, or TOC.

Education Qualification & Certifications (optional)

Required Minimum Qualifications:

• Bachelor’s degree in computer science, Information Security, or a related field

Skill Set Required

Primary Skills (must have)

Key Skills: Network Security fundamentals (firewalls, VPNs, IDS/IPS, proxies), SIEM Tools (Splunk, QRadar, or similar), Network Operations Centre (NOC), Technology Operations Centre (TOC), Security Operations Center (SOC)

• IAM fundamentals (user provisioning, authentication, access control, identity lifecycle)
• Network Security fundamentals (firewalls, VPNs, IDS/IPS, proxies)
• Alert monitoring and incident triage
• Experience with SIEM tools (Splunk, QRadar, or similar)
• Troubleshooting and incident management in a 24/7 environment
• Strong analytical and problem-solving skills
• Hands-on or exposure to IAM tools: SailPoint, ForgeRock, Radiant One, Active Directory, Azure AD (Entra ID), CyberArk
• Network security tools and technologies:
  • Firewalls (Fortinet or similar platforms)
  • VPN technologies (site-to-site and remote access)
  • IDS/IPS and traffic inspection tools
• Monitoring and analysis tools:
  • Logic Monitor
  • Wireshark
  • Akamai (CDN, WAF, edge security)
• Firewall operations (HA monitoring, session utilization, log analysis, rule validation)
• Network troubleshooting (ping, traceroute, port checks, latency/packet loss analysis)
• Understanding of ITIL-based incident management processes
• Familiarity with ticketing and monitoring systems

Secondary Skills (desired)

• Automation knowledge
• Power BI dashboard
• PHYTON SCRIPTING
• SHELL SCRIPTING