Senior Software Engineer, Information Security
Walmart · Bentonville, AR · 2 wk ago
On-siteInformation Technology$90k–$180k/yrFull-time
About the role
The Information Security Services team works to protect, defend, and reduce risks across applications, platforms, infrastructure, and services to keep our assets and resources secure. We are seeking a Senior Software Engineer with information security expertise to help design and build secure, resilient services and AI-driven workflows for our Golden Path initiative, supporting enterprise security automation and compliance validations.
Responsibilities
- Create and maintain secure APIs along with frameworks for service-to-service and Agentic communications.
- Arcitect scalable, universally available backend systems that process and validate security control evidence.
- Build resilient integrations across security tooling ecosystems (scanners, CI/CD, internal APIs).
- Develop telemetry pipelines that help preserve audit integrity and traceability.
- Build consumer APIs and aggregate data originating from telemetry signals and sensors, in a scalable backend database.
- Write SQL queries or equivalent to ingest, update and retrieve data from the backend.
- Manage and support Agents, MCP servers, APIs, and infrastructure components that form part of our Security controls and Golden Path ecosystem.
- Apply threat modeling and secure data handling principles to build and validate control effectiveness.
- Incorporate AI-driven workflows that include safeguards for secure coding and compliance validation.
- Collaborate with Product Security, Compliance, and Platform teams to automate thousands of security validation tasks.
- Reduce security review cycle times while strengthening control consistency and audit defensibility.
Requirements
- Experience in building scalable, resilient, secure enterprise application platforms using microservices, APIs, and backend technologies.
- Expert skills in programming languages such as Java or Python and in interfacing with a backend database using SQL queries.
- Expert in database skills in data modeling, indexing, query optimization, data integrity enforcement, performance engineering, schema design, and data archival.
- Working experience in Cloud solutions platforms and CI/CD pipeline.
- Knowledge of triaging and fixing bugs in a microservice, in tier architecture and in big data platforms.
- Demonstrated ability to learn new programming languages or technologies.
- Flexibility in adapting to new areas of work, domain, and technical competencies.
- Awareness about information security domains, specifically application security with static security scanning, Software composition analysis, vulnerabilities, threats, and exploits.
- Good written and verbal communication skills.
- Good analytical and critical thinking skills.
Qualifications
- Bachelor’s degree in Computer Science, Information Technology, or related field and 5 years' experience in information technology within the past 10 years OR 7 years' experience in information technology or related field within the past 10 years.
- Preferred: Certified Intrusion analyst (GCIAs), GIAC Certified Enterprise Defender (GCED), Certified Geographic Information Systems Professional (GISP), GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), GIAC Security Essentials Certification (GSEC), and/or Security+ certification, Leading Technical Team, Mainframe Technology, Professional certification in information technology relevant to the job under consideration (for example, Java, C/C++, mainframe technologies, SAP, Microsoft .Net, business intelligence tools, SQL technology), Programming language or languages (for example, Java, C/C++, .NET, Rexx, Cobol, Powershell), SAP, SQL technology, Version control software (for example, Subversion, Git, Librarian), We value candidates with a background in creating inclusive digital experiences, demonstrating knowledge in implementing Web Content Accessibility Guidelines (WCAG) 2.2 AA standards, assistive technologies, and integrating digital accessibility seamlessly.