Profiles search
Chad Evans
Information Security Analyst I at Lowes Companies, Inc.
Mooresville, NC, United States
Details
Experience:
Reduce risk, drive vulnerability remediation, and document policies and procedures for Lowe's Digital IT
Analyze and evaluate potential threats and vulnerabilities within the company's digital assets
Review SAST and DAST results and identify and remove false positives
Perform XSS, XSRF, SQL Injections and other techniques to test vulnerabilities and discover possible vectors of attack.
Prioritize all security related issues in a single backlog
Assist developers with :
The understanding of security defects and risk
Defining acceptable solution to fix defects
The remediation of identified vulnerabilities
Facilitated weekly Information Security meetings to provide security recommendations as well as discuss and identify industry risk
Collaborate with enterprise to complete security related projects (PCI/DSS Compliance, TLS1.0/SSL removal, etc.)
Work closely with enterprise Security Operations Control and Penetration Testers to improve information security on digital assets
2017 : Present
Lowe's Companies, Inc.
Information Security Analyst I
Worked collaboratively with businesses to elicit hardware and software requirements, gather business capabilities, and actively worked to ensure progress aligned with defined business requirements.
Collaborated with business and project stakeholders to analyze business processes and requirements by using techniques such as document analysis, SWOT analysis, workshops, interviews, process modelling, and workflow analysis.
Used defined requirements to draft deliverables such as use cases, process diagrams, traceability matrices, requirements, and solutions documents.
Facilitated weekly meetings with business clients to align requirements, document possible risks, and determine opportunities for improvements..
Evaluated risks pertaining to requirements to ensure all functional, non-functional, and technical requirements were met.
Successfully led two projects through the vendor selection process using elicitation techniques and the analysis of critical requirements.
2016 : 2017
Lowe's Companies, Inc.
IT Business Analyst
Designed, maintained, updated, and repaired the company website
Created programs that recorded and displayed information to save the company time and improve efficiency
Troubleshot technological issues
Implemented IT solutions to help improve business operations
2015 : 2015
Downingtown Area Recreation Consortium (DARC)
IT Intern
Analyze and evaluate potential threats and vulnerabilities within the company's digital assets
Review SAST and DAST results and identify and remove false positives
Perform XSS, XSRF, SQL Injections and other techniques to test vulnerabilities and discover possible vectors of attack.
Prioritize all security related issues in a single backlog
Assist developers with :
The understanding of security defects and risk
Defining acceptable solution to fix defects
The remediation of identified vulnerabilities
Facilitated weekly Information Security meetings to provide security recommendations as well as discuss and identify industry risk
Collaborate with enterprise to complete security related projects (PCI/DSS Compliance, TLS1.0/SSL removal, etc.)
Work closely with enterprise Security Operations Control and Penetration Testers to improve information security on digital assets
2017 : Present
Lowe's Companies, Inc.
Information Security Analyst I
Worked collaboratively with businesses to elicit hardware and software requirements, gather business capabilities, and actively worked to ensure progress aligned with defined business requirements.
Collaborated with business and project stakeholders to analyze business processes and requirements by using techniques such as document analysis, SWOT analysis, workshops, interviews, process modelling, and workflow analysis.
Used defined requirements to draft deliverables such as use cases, process diagrams, traceability matrices, requirements, and solutions documents.
Facilitated weekly meetings with business clients to align requirements, document possible risks, and determine opportunities for improvements..
Evaluated risks pertaining to requirements to ensure all functional, non-functional, and technical requirements were met.
Successfully led two projects through the vendor selection process using elicitation techniques and the analysis of critical requirements.
2016 : 2017
Lowe's Companies, Inc.
IT Business Analyst
Designed, maintained, updated, and repaired the company website
Created programs that recorded and displayed information to save the company time and improve efficiency
Troubleshot technological issues
Implemented IT solutions to help improve business operations
2015 : 2015
Downingtown Area Recreation Consortium (DARC)
IT Intern
Company:
Lowe's Companies, Inc.
About
Cyber Security Analyst focusing on secure Agile software delivery, vulnerability remediation, strategy and awareness. Experienced Security Analyst with a demonstrated history in identifying root cause problems. Strong business development professional with a Bachelor’s Degree focused in Computer and Information Sciences and a minor in Security and Risk Anlaysis from Penn State University.
Profile Photo
