This job ad has been posted over 30 days ago...

51

applicants

Staff Engineer - Application Security Full-time

at Walmart Labs in Banglore (Published at 11-07-2017)

Our Company
If you’re thinking ‘scale’, think bigger and don’t stop there. At Walmart Labs Bengaluru, we don’t just innovate, we enable transformations across stores and different channels for the Walmart experience. Take a regular day at Walmart Labs and match that with 260 million customers a week, 11,695 stores, under 59 banners in 28 countries and e-commerce websites in 11 countries. That’s Walmart Labs Bengaluru for you.
With fiscal year 2017 revenue of $485.9 billion, Walmart employs approximately 2.3 million associates worldwide. We innovate to deliver a simple and seamless experience for our customers. Our tech talent
solves the biggest and most complex problems. They drive digital transformation where data and analytics are enabling us to better serve our customers and create a digital relationship with them. As our customers evolve and adapt, we are taking it a few notches further here. We’re changing what customers can expect from the experience of shopping, from the physical stores, to mobile, social and even online; we’re not just ready for the future of shopping, we’re creating it.
Our Team
We are a global Information Security team responsible for securing Walmart properties and maintain integrity and confidentiality of our company's data and information systems. We offer security services which helps to mitigate attacks and reduce risk to Walmart properties on daily basis. Core security services developed by the team help to protect sensitive data at rest and in transit. Managing network security, assess and mitigating risks, driving vulnerability remediation, security testing and remediation proposals are key areas we focus on as a team and this helps us to meet regulatory and compliance needs.
Your Opportunity
You will be part of a team of highly talented Information security engineers solving problems at all levels of the platform stack. You'll partner with brightest technologists in the Information Security team and business in Silicon Valley to provide robust technical solutions to business problems. Your work will be immediately visible to top management and you will have a direct impact on the business goals related to information security of Fortune #1 company.
Your Responsibility:
 You will work with global teams to best understand the organizations needs and how it relates to our global network infrastructure and security posturing. Work with internal teams to evaluate and recommend improvements to improve CIA at application layer.
 You will lead application penetration testing and secure code review strategies for complex, critical impact projects by driving the development of test plans; determining testing scope for assigned projects; establishing and evaluating security metrics; reviewing and approving security requirements; identifying dependencies and risks; determining prioritization for risk remediation
efforts based on criticality; evaluating application and system deployments for security
vulnerabilities and outlining risk mitigation deliverables and deadlines.
 You will perform application, web, mobile and network penetration tests using both automated
and manual techniques
 You will identify and exploit vulnerabilities in commercial, open source, custom software
applications and infrastructure across one of the world’s largest networks
 You will compose test reports and record vulnerability data according to Governance, Risk, and
Compliance (GRC) processes
 You will continually learn the latest and most advanced security testing techniques, development
tools, and frameworks
 You will proactively and consistently share technical knowledge with others
 You will maintain testing tools, hardware, and equipment creating new tools where appropriate
 You will collaborate with both Red and Blue teams to enhance Walmart’s security posture
 You will demonstrate deep knowledge of common operating system
Your Qualification:
 A Bachelor’s or Master’s in Engineering or higher degree.
 You will possess 10+ years of work experience as an application security engineer in high-
volume retail or large enterprise environment.
 Proven application security testing experience and/or related certifications (e.g. OSCP, OSWP,
OSCE, GPEN, GWAPT, GXPN)
 Demonstrable experience in identifying and exploiting vulnerabilities in commercial, open source,
mobile applications (iOS, Android) and custom software products
 You would have demonstrated experience with penetration testing tools (e.g. Metasploit, Burp
Suite, etc.)
 You possess experience in manually executing attacks without the use of tools
 Possess experience in conducting secure code reviews
 You would have strong knowledge of multiple, common operating systems
 You would have strong knowledge of common networking configurations, load balancing,
firewalls, and security controls
 You would have knowledge of authentication and SSO technologies
 You would have knowledge of applied cryptography and common implementation flaws
Our Ideal Candidate
Our ideal candidate is an energetic, self-motivated individual focused on solving customer problems. He/She is a responsive team player who can proactively contribute at an individual level. He /she is someone who thrives in a fun, fast-paced, dynamic, startup-like environment.

Note: Applications have been closed.


Viewed: 1347 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend