Staff, Application Security Engineer - Product Security
Position Summary
The Information Security team has the herculean task of assuring that customers can safely shop with peace of mind knowing their data and information will be safe and secure. Solving some of the most unique cybersecurity problems in the industry, our team members share an elevated level of creativity and ingenuity to secure data for the largest retail operation in the world. As part of Product Security, this role plays a critical part in advancing security automation and governance capabilities embedded directly into developer workflows.
What you'll do
- Leverage your proven experience, passion, and enthusiasm partnering with technology and business stakeholders to integrate security early in the product lifecycle.
- Define and govern secure architecture patterns, configuration standards, and enterprise control logic to ensure consistent and scalable security validation across applications.
- Develop deep knowledge of products and platforms to define secure-by-default implementation guidance.
- Design and validate automated control logic that produces defensible, risk-aligned validation outcomes.
- Display strong expertise in threat modeling, penetration/security testing, and code reviews, and collaboratively partner to accelerate priority business initiatives.
- Evaluate and operationalize SAST, SCA, and related security tooling outputs to ensure accurate risk detection and reduce misconfiguration exposure.
- Serve as a trusted partner for technology and business stakeholders by securely enabling business initiatives through architecture and configuration reviews.
- Map security controls to applicable compliance frameworks and ensure validation outcomes generate reliable audit evidence.
- Build strong collaborative partnerships with stakeholders that securely accelerate speed to market for the business.
- Provide secure design, development, implementation, sustainment, and governance expertise across the application lifecycle.
- Effectively document product security standards, validation logic, and governance decisions.
- Develop and evolve metrics to measure the efficacy, accuracy, and coverage of automated product security controls.
- Mentor and share knowledge with stakeholders and peers to advance secure engineering maturity.
- Continually exercise effective communication, writing, and presentation skills.
Supporting Fortune 1’s Priority Business and Technology Initiatives
- Supporting Fortune 1’s priority business and technology initiatives through scalable, automated security governance.
- Reducing manual and inconsistent security review processes by embedding secure standards and validation logic directly into engineering workflows.
- Collaborating and delivering global solutions that enable our customers to Save Money and Live Better.
Minimum Qualifications
- Outlined below are the required minimum qualifications for this position. If none are listed, there are no minimum qualifications.
- Option 1: Bachelor's degree in computer science, information technology, engineering, information systems, cybersecurity, or related area and 4 years’ experience in application security, or related area at a technology, retail, or data-driven company.
- Option 2: 6 years’ experience in application security, or related area at a technology, retail, or data-driven company.
Preferred Qualifications
- Outlined below are the optional preferred qualifications for this position. If none are listed, there are no preferred qualifications.
- Certification in Security+, GISF, CISSP, CSSP, CASE, or GWEB.
- Master’s degree in Computer Science, Information Technology, Engineering, Information Systems, Cybersecurity, or related area and 2 years’ experience leading information security or cybersecurity projects.
- We value candidates with a background in creating inclusive digital experiences, demonstrating knowledge in implementing Web Content Accessibility Guidelines (WCAG) 2.2 AA standards, assistive technologies, and integrating digital accessibility seamlessly.
Additional Compensation
- Annual or quarterly performance bonuses.
- Stock.
Benefits
- Health benefits include medical, vision and dental coverage.
- Financial benefits include 401(k), stock purchase and company-paid life insurance.
- Paid time off benefits include PTO (including sick leave), parental leave, family care leave, bereavement, jury duty, and voting.
- Other benefits include short-term and long-term disability, company discounts, Military Leave Pay, adoption and surrogacy expense reimbursement, and more.
Additional Information
- You will also receive PTO and/or PPTO that can be used for vacation, sick leave, holidays, or other purposes.
- The amount you receive depends on your job classification and length of employment. It will meet or exceed the requirements of paid sick leave laws, where applicable.
- For information about PTO, see https://one.walmart.com/notices.
- Live Better U is a Walmart-paid education benefit program for full-time and part-time associates in Walmart and Sam's Club facilities. Programs range from high school completion to bachelor's degrees, including English Language Learning and short-form certificates. Tuition, books, and fees are completely paid for by Walmart. Eligibility requirements apply to some benefits and may depend on your job classification and length of employment.
- Benefits are subject to change and may be subject to a specific plan or program terms.
- For Information About Benefits And Eligibility, See One.Walmart.
Primary Location
2501 Se J St, Ste A, Bentonville, AR 72716-3724, United States of America
Drug-Free Workplace
Walmart and its subsidiaries are committed to maintaining a drug-free workplace and has a no tolerance policy regarding the use of illegal drugs and alcohol on the job. This policy applies to all employees and aims to create a safe and productive work environment.