Engineer, Information Security_Java + ForgeRock

Job Description

About Lowe’s

Lowe’s is a FORTUNE® 100 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2024 sales of more than $83 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe’s supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit Lowes.com.

Lowe’s India, the Global Capability Center of Lowe’s Companies Inc., is a hub for driving our technology, business, analytics, and shared services strategy. Based in Bengaluru with over 4,500 associates, it powers innovations across omnichannel retail, AI / ML, enterprise architecture, supply chain, and customer experience. From supporting and launching homegrown solutions to fostering innovation through its Catalyze platform, Lowe’s India plays a pivotal role in transforming home improvement retail while upholding strong commitment to social impact and sustainability. For more information, visit Lowes India

Job Summary :

We are seeking an experienced Identity and Access Management (IAM) Engineer with a strong focus on authentication and authorization to join our team. This role will be responsible for the design, implementation, and ongoing maintenance of IAM solutions, particularly in the areas of authentication protocols (OAuth 2.0, OpenID Connect, SAML 2.0), integration with Identity Providers (Keycloak, ForgeRock, Ping), and supporting LDAP-based directory services. The ideal candidate will have hands-on experience with Java development to support customizations and enhancements of IAM systems, a deep understanding of IAM best practices, and a proactive approach to ensuring the security and scalability of our access management systems. This role offers the opportunity to work closely with cross-functional teams to deliver secure and efficient IAM solutions across on-prem and cloud environments.

Key Responsibilities :

• Core Role : Design, implement, and maintain information security tools and services in the Identity and Access Management (IAM) domain, with a primary focus on authentication and authorization solutions.
• IAM Products : Support and manage enterprise-level IAM systems and services, such as Keycloak , ForgeRock , Ping , and other Identity Providers (IdPs). Demonstrate expertise in configuring, troubleshooting, and enhancing these systems to meet security and access management requirements.
• Authentication Standards : Ensure the adoption and implementation of authentication standards (e.g., OAuth 2.0 , OpenID Connect (OIDC) , SAML 2.0 ). Translate organizational requirements into appropriate authentication and authorization frameworks.
• LDAP Knowledge : Apply a solid understanding of LDAP concepts, integration with enterprise directories, and their role in IAM systems. Troubleshoot, optimize, and maintain LDAP-based access management environments.
• System Design & Deployment : Collaborate with the engineering and security teams to design, deploy, and operate secure authentication solutions across the organization. Develop and document IAM-related policies, processes, and procedures in line with best practices.
• Security Monitoring & Incident Response : Assist the Information Security team with monitoring security systems, analyzing logs, identifying vulnerabilities, and addressing escalated security incidents. Support incident response efforts related to IAM solutions.
• Cross-team Collaboration : Partner with other teams to design and implement secure solutions for various enterprise applications and infrastructure components.
• Cloud IAM Integration : Assist in integrating IAM solutions with cloud technologies and platforms (e.g., AWS, Azure, GCP). Ensure secure identity and access management in hybrid or cloud-native environments.
• Continuous Learning & Development : Stay up to date with the latest technological advancements in IAM, security standards, and cybersecurity best practices. Participate in continuing education related to identity access management and information security.
• Security Best Practices : Contribute to secure coding initiatives by developing secure enhancements and using security best practices to mitigate vulnerabilities. Ensure compliance with security standards in all IAM-related activities.
• Cybersecurity Tools & Threat Management : Analyze the output of industry-standard cybersecurity tools (e.g., vulnerability scanners, SIEM systems) to identify threats and reduce risk exposure. Develop strategies to address IAM-related security weaknesses.
• Incident Management : Assist in the implementation of proactive IAM measures and contribute to security breach response procedures. Aid in the management of incidents by diagnosing, troubleshooting, and remediating IAM security issues.
• Custom Enhancements & Documentation : Assist in custom development using Java or other relevant programming languages for enhancements in IAM systems. Contribute to technical documentation in a software development environment, ensuring compliance with IAM best practices.
• Vendor & Product Support : Collaborate with vendors and product teams for troubleshooting, maintenance, and the enhancement of IAM products and services. Ensure proper documentation and knowledge sharing within the team.

Required Qualifications :

Mandatory Skills :