Staff, Application Security Engineer - Product Security

Position Summary... What you'll do... The Information Security team has the herculean task of assuring that customers can safely shop with peace of mind knowing their data and information will be safe and secure. Solving some of the most unique cybersecurity problems in the industry, our team members share an elevated level of creativity and ingenuity to secure data for the largest retail operation in the world. As part of Product Security, this role plays a critical part in advancing security automation and governance capabilities embedded directly into developer workflows. You will help define, validate, and govern secure architecture, configuration standards, and enterprise control logic across Walmart’s application ecosystem—ensuring automated validation decisions are defensible, risk-aligned, scalable, and audit-ready. You’ll sweep us off our feet if…. You have proven experience partnering with technology and business stakeholders to integrate security early in the product lifecycle. You have deep expertise in OWASP risks, secure coding patterns, and threat modeling, with the ability to define secure-by-default standards and clearly distinguish acceptable risk tradeoffs. You have strong experience governing secure architecture and defining configuration baselines across enterprise environments (e.g., authorization models, database hardening, input validation frameworks). You have demonstrated proficiency designing and validating security controls, mapping them to compliance frameworks, and producing defensible audit evidence. You have experience operationalizing SAST and SCA tooling outputs, assessing misconfiguration risk, and minimizing false positive and false negative validation outcomes. You have experience aligning technical security decisions with enterprise risk modeling and risk acceptance frameworks. You enjoy solving complex technical challenges while collaboratively partnering to accelerate priority business initiatives on scale. You’ll make an impact by… Supporting Fortune 1’s priority business and technology initiatives through scalable, automated security governance Reducing manual and inconsistent security review processes by embedding secure standards and validation logic directly into engineering workflows Collaborating and delivering global solutions that enable our customers to Save Money and Live Better What you’ll do… Leverage your proven experience, passion, and enthusiasm partnering with technology and business stakeholders to integrate security early in the product lifecycle. Define and govern secure architecture patterns, configuration standards, and enterprise control logic to ensure consistent and scalable security validation across applications. Develop deep knowledge of products and platforms to define secure-by-default implementation guidance. Design and validate automated control logic that produces defensible, risk-aligned validation outcomes. Display strong expertise in threat modeling, penetration/security testing, and code reviews, and collaboratively partner to accelerate priority business initiatives. Evaluate and operationalize SAST, SCA, and related security tooling outputs to ensure accurate risk detection and reduce misconfiguration exposure. Serve as a trusted partner for technology and business stakeholders by securely enabling business initiatives through architecture and configuration reviews. Map security controls to applicable compliance frameworks and ensure validation outcomes generate reliable audit evidence. Build strong collaborative partnerships with stakeholders that securely accelerate speed to market for the business. Provide secure design, development, implementation, sustainment, and governance expertise across the application lifecycle. Effectively document product security standards, validation logic, and governance decisions. Develop and evolve metrics to measure the efficacy, accuracy, and coverage of automated product security controls. Mentor and share knowledge with stakeholders and peers to advance secure engineering maturity. Continually exercise effective communication, writing, and presentation skills. At Walmart, we offer competitive pay as well as performance-based bonus awards and other great benefits for a happier mind, body, and wallet. Health benefits include medical, vision and dental coverage. Financial benefits include 401(k), stock purchase and company-paid life insurance. Paid time off benefits include PTO (including sick leave), parental leave, family care leave, bereavement, jury duty, and voting. Other benefits include short-term and long-term disability, company discounts, Military Leave Pay, adoption and surrogacy expense reimbursement, and more. You will also receive PTO and/or PPTO that can be used for vacation, sick leave, holidays, or other purposes. The amount you receive depends on your job classification and length of employment. It will meet or exceed the requirements of paid sick leave laws, where applicable. For information about PTO, see https://one.walmart.com/notices. Live Better U is a Walmart-paid education benefit program for full-time and part-time associates in Walmart and Sam's Club facilities. Programs range from high school completion to bachelor's degrees, including English Language Learning and short-form certificates. Tuition, books, and fees are completely paid for by Walmart. Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to a specific plan or program terms. For information about benefits and eligibility, see One.Walmart. Bentonville, Arkansas US-09050: The annual salary range for this position is $110,000.00 - $220,000.00 Herndon, Virginia US-10710: The annual salary range for this position is $132,000.00 - $264,000.00 Additional compensation includes annual or quarterly performance bonuses. Additional compensation for certain positions may also include : - Stock