Skip Navigation

Job Description

Job Description

IT Compliance Engineer II

Job ID 1334017BR Date posted 01/26/2018 Location Mooresville, NC Location Name CSC-Mooresville Address 1000 Lowes Boulevard Employment Type I Regular Employment Type II Full-Time Line of Business Corporate Department 0194 - IT Svc Mgt&Governance

The primary purpose of this role is to support in the oversight of Lowe's IT department compliance through monitoring, analyzing, and responding to security, audit and regulatory compliance requirements. This includes responsibility for participating directly as well as coaching others in the execution of IT controls to mitigate risks to Lowe's network, data, and information.


• Develops, validates, and executes hardware and infrastructure tests to identify system security and compliance risks and makes recommendations to address the risks
• Assists IT in developing and executing IT controls in adherence to applicable regulations, security standards and Lowe’s IT policies
•Reports compliance assessment results to IT teams and collaborates with recipients to address the results
• Supports and advises IT teams in remediating security configuration issues, vulnerabilities, exposures and IT control gaps and deficiencies
• Escalates security configuration issues, cyber security vulnerabilities, exposures and IT control gaps and deficiencies according to Lowe’s policies, SOX, TR-39 and PCI requirements
• Collaborates with technical teams to identify, resolve and mitigate security configuration issues, vulnerabilities and audit findings



Bachelor's Degree in a related field
5+ years of experience in Information and Network Security or IT Compliance
7+ years of experience
Basic understanding of fundamental security and network concepts (operating systems, databases, intrusion/detection, TCP/IP, ports, etc.)


Information Technology experience in the Retail industry

Any of the following certifications: Certified Information Systems Security Professional (CISSP), PCI QSA or ISA, GIAC Global Information Assurance Certification from SANS Institute, Cisco Certified Network Administrator (CCNA) or Cisco Certified Network Professional (CCNP), CISA - Certified Information Security Auditor, CISM - Certified Information Security Manager, CRISC - Certified in Risk and Information System Control, or CGEIT - Certified in the Governance of Enterprise IT

Knowledge of government and/or industry regulatory requirements (PCI, SOX, HIPAA, etc.)
Knowledge/understanding of security standards (e.g. NIST, CIS, STIG, etc.)
Windows server system administration or configuration experience
Knowledge of configuration control and file integrity monitoring tools

About Lowe’s

Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE ® 50 home improvement company serving more than 17 million customers a week in the United States, Canada and Mexico. With fiscal year 2016 sales of $65.0 billion, Lowe’s and its related businesses operate or service more than 2,370 home improvement and hardware stores and employ over 290,000 people. Founded in 1946 and based in Mooresville, N.C., Lowe’s supports the communities it serves through programs that focus on K-12 public education and community improvement projects. For more information, visit


Lowe’s is an equal opportunity affirmative action employer and administers all personnel practices without regard to race, color, religion, sex, age, national origin, disability, sexual orientation, gender identity or expression, marital status, veteran status, genetics or any other category protected under applicable law.

Email Job

Talent Community

Please sign up here to join our Talent Community

Stay Connected

Social Image - #LowesHeroes lat=instagram_5809701652

@JimmieJohnson is back to announce that today is National Hiring Day! Join us at any store nationwide from 10am-7pm to have an opportunity to get hired on the spot! We hope to see you there!
Posted: 02/21/2018

about #LowesHeroes
Read More | Get Social