Sr Engineer, Information Security

Innovate in Charlotte

Thank you for dedicating your time and talent to Lowe’s. We want to give you more opportunities to learn and grow, so if you find a position you’re interested in below, we encourage you to apply!

Your Impact

The primary purpose of this role is to support the design, implementation, and ongoing operations of enterprise identity, access, and cloud security solutions. This includes translating business and technical requirements into robust enterprise IAM and cloud security implementations that ensure information assets are protected with appropriate levels of control.

This engineer role will focus primarily on Microsoft Entra ID (formerly known as Azure Active Directory), Microsoft 365 administration, and IAM automation, while supporting broader enterprise cloud integrations (including GCP and Oracle Cloud). The responsibilities also included monitoring, testing, and evaluating security configurations, performing troubleshooting, and implementing remediation steps to maintain compliance and operational excellence.

To be successful, the individual must possess hands-on experience across Azure, Microsoft 365 ecosystems, and broader IAM disciplines and work collaboratively across engineering and security teams.

What You Will Do

• Design, build, and maintain IAM and Azure-based identity systems

• Administer Azure AD user and directory management, conditional access policies (creation, testing, modification), Azure enterprise and app registrations and SSO integrations (which includes permissions and role-based access control (RBAC) administration) across different applications and projects

• Support and maintain Office 365 suite integrations, including Exchange, Teams, and SharePoint

• Manage identity integrations between on-prem Active Directory and Azure AD (AAD Connect, ADFS)

• Implement and manage Azure Automation for identity provisioning, role assignment, and alerting

• Assist with security monitoring and compliance efforts, including Purview and Microsoft Defender

• Collaborate with security and engineering teams to design and implement secure access and automation solutions

• Participate in IAM and cloud-related incident response, troubleshooting, and root cause analysis

• Partner with cross-functional teams (e.g., Ops, Security, Engineering) to support hybrid-cloud identity operations

• Develop and maintain documentation, operational runbooks, and automation scripts

• Stay informed on emerging IAM and cloud technologies to recommend improvements

• Lead the design, construction, and enhancement of advanced cybersecurity platforms, leveraging expert-level scripting methodologies and custom code development to ensure superior security infrastructure and resilience.

• Leads the implementation and maintenance of assigned information security solutions to ensure successful deployment and operation; develops and documents detailed standards (e.g., guidelines, processes, procedures)

Minimum Qualifications

• Bachelor’s degree Computer Science, CIS, Engineering, Cybersecurity, or related field or equivalent years of experience in lieu of education requirement, if applicable

• 5 Years of Experience in technology system support, software development or a related field

• 2 Years of Experience with information security applications and systems

Preferred Skills/Education

• Master’s degree Computer Science, CIS, Business Administration, or related field

• 3–4 years of hands-on experience in Azure or Microsoft identity and cloud administration

• Experience managing and troubleshooting Azure Active Directory, Conditional Access, and O365 environments

• Familiarity with IAM concepts (role-based access, SSO, federation, lifecycle management)

• Basic understanding of scripting and automation (PowerShell, Azure Automation, or similar tools)

• Advanced expertise in Azure AD, Office 365, and cloud IAM administration

• Experience with Active Directory Federation Services (ADFS) and AAD Connect

• Working knowledge of Microsoft Purview, Defender, and compliance/security controls

• Familiarity with GCP identity management and Oracle Cloud SSO integrations

• Understanding of SCIM provisioning and identity automation frameworks

• Experience with incident response and security vulnerability remediation processes

• Relevant certifications such as AZ-500, SC-300, CISSP, or Microsoft Certified: Identity and Access Administrator

• Knowledge of ITIL practices and enterprise operations

Benefits

• 401k with up to 4.25% match

• Bi-annual Cash Bonus

• Discounted Employee Stock Purchase Plan (15% discount of strike price)

• Tuition-Free Education

• 10-week Maternity/Parental Leave

• 10% Associate Discount

• For information about our benefit programs and eligibility, please visit https://talent.lowes.com/us/en/benefits.

About Lowe’s

Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE® 100 home improvement company with total fiscal 2025 sales of more than $86 billion. Lowe’s employs approximately 300,000 associates and operates over 1,750 home improvement stores, 540 branches and 120 distribution centers. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit Lowes.com.

Lowe’s is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.