About Lowe’s
Lowe’s, the second-largest home improvement retailer globally and a Fortune 50 company, operates over 2,000 stores and numerous corporate offices across the globe, generating over $90 billion in annual revenue. As a leader in the industry, Lowe’s is committed to innovation, with significant investments in technology and e-commerce.
Lowe’s Technology associates are based out of our Technology Hub in the South End neighborhood of Charlotte, North Carolina and operate on a hybrid workplace model.
Lowe’s offers comprehensive benefits and robust career opportunities in a dynamic, fast-paced environment. In addition to competitive health, dental and vision coverage, associates are offered employee-paid life insurance, short- and long-term disability, flexible spending accounts, maternity and parental leave, and employer-paid mental health coverage. Financial benefits include a 401(k) company match that vests on day-one, employee stock purchase plans, annual bonuses, and education assistance.
About The Role
As a Senior Director of Governance, Risk, and Compliance, you will lead global initiatives that drive business resilience in one of the world’s largest retail organizations. Your ability to navigate complex landscapes and implement innovative compliance strategies will be crucial in ensuring our continued growth and success. We are seeking a seasoned GRC professional who thrives on complexity and is passionate about driving compliance excellence; in this high-impact role, you will spearhead the development and execution of cutting-edge GRC frameworks that safeguard our organization while enabling agility and innovation. The individual in this role provides direction and people leadership to multiple teams while overseeing department level budgets, planning, and forecasting. Proven track record in global retail or similarly complex industries is a plus! The individual in this role provides direction and people leadership to multiple teams while overseeing department level budgets, planning, and forecasting.
Key Responsibilities:
- Works closely with the Chief Information Security Officer (CISO), IT, and Business Executives, to create and manage the Risk Management Program of Lowe’s. This includes processes to identify, manage and report risk in a clear and quantitative format.
- Develops and uses predictive analytics to better predict risks to the company and equip other teams within the group to create appropriate countermeasures, either by way of process, governance, or technology.
- Establishes an Information Security controls framework that defines the risk vision for the company and how the effectiveness of the security Program will be measured in relation to established standards.
- Provides expertise and guides the administration of security tools to ensure they are addressing the governance, risk, and compliance aspects.
- Creates and maintains a solid security awareness Program which ensures Lowe’s associates are well educated in common cyber security best practices and are equipped to safeguard the information assets of the company.
- Creates and maintains a compliance function that partners with stakeholders to ensure they understand and are successful in establishing processes, technologies or governance structures that will create systems that are compliant to external regulations such as SOX, PCI, etc. as well as internal controls established by the GRC group.
Minimum Qualifications
- Bachelor's Degree in Computer Science, CIS, Engineering, Business Administration, Cybersecurity, or related field (or equivalent work or military experience in a related field)
- 12 years of experience in combination of risk management, security, compliance and Information Technology
- 7 years of leadership experience with direct reports
- 8 years of experience with information security tools, concepts and practices
- Familiarity with multi-platform technology environments and their operational/security considerations
- Strong project management skills, with experience in managing resources to meet goals on simultaneous/multiple projects
- Experience leading global teams
Preferred Qualifications
- IT experience in the retail industry
- Relevant information security certifications (e.g., CISSP, CISM, CEH, PCI ISA, CRISC, CISA, OSCP, GPen)
- Experience in a PCI/Retail technology environment
- 5 years of senior management experience
- Experience managing in an Agile environment
- Experience with process management methodologies such as Six Sigma or ITIL Delivery methodologies (Agile, Scrum, SAFe)
- Broad knowledge of infrastructure (network and servers), network architecture, services and security policies
About Lowe’s
Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2023 sales of more than $86 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing and helping to develop the next generation of skilled trade experts. For more information, visit Lowes.com.
Lowe’s is an equal opportunity employer and administers all personnel practices without regard to race, color, religious creed, sex, gender, age, ancestry, national origin, mental or physical disability or medical condition, sexual orientation, gender identity or expression, marital status, military or veteran status, genetic information, or any other category protected under federal, state, or local law.
Pay Range: $179,000.00 - $340,100.00 annually Starting rate of pay may vary based on factors including, but not limited to, position offered, location, education, training, and/or experience. For information regarding our benefit programs and eligibility, please visit https://talent.lowes.com/us/en/benefits.